CVE-2024-31146— Xen 安全漏洞

PCI device pass-through with shared resources

When multiple devices share resources and one of them is to be passed through to a guest, security of the entire system and of respective guests individually cannot really be guaranteed without knowing internals of any of the involved guests. Therefore such a configuration cannot really be security-supported, yet making that explicit was so far missing. Resources the sharing of which is known to be problematic include, but are not limited to - - PCI Base Address Registers (BARs) of multiple devices mapping to the same page (4k on x86), - - INTx lines.

N/A

N/A

Xen 安全漏洞

Xen是Xen开源的一款开源的虚拟机监视器产品。该产品能够使不同和不兼容的操作系统运行在同一台计算机上，并支持在运行时进行迁移，保证正常运行并且避免宕机。 Xen 4.16.x之前版本存在安全漏洞，该漏洞源于当一个设备传递给客户机时，由于不了解涉及的客户机内部细节，无法保证整个系统及其各自客户机的安全性。

N/A

N/A