File xsa178-0021-libxl-Document-serial-correctly.patch of Package xen.7673

References: bsc#979670 CVE-2016-4963 XSA-178

From 858580635c21a677446ca2e37c3f90298cecb0e3 Mon Sep 17 00:00:00 2001
From: Ian Jackson <ian.jackson@eu.citrix.com>
Date: Wed, 4 May 2016 15:17:45 +0100
Subject: [PATCH 21/21] libxl: Document ~/serial/ correctly

xenstore-paths.markdown talked about ~/device/serial/, but that's not
used.

(It is very wrong for this value, which contains a driver domain
filesystem path, to be in the guest's area of xenstore.  However, it
is only ever created by libxl and ready by xenconsoled.  When it is
created, it inherits the read-only permissions of /local/domain/DOMID.
So there is no security bug.)

This is a followup to XSA-175.

Signed-off-by: Ian Jackson <Ian.Jackson@eu.citrix.com>
Reviewed-by: Wei Liu <wei.liu2@citrix.com>
---
 docs/misc/xenstore-paths.markdown | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Index: xen-4.4.4-testing/docs/misc/xenstore-paths.markdown
===================================================================
--- xen-4.4.4-testing.orig/docs/misc/xenstore-paths.markdown
+++ xen-4.4.4-testing/docs/misc/xenstore-paths.markdown
@@ -232,7 +232,7 @@ The primary PV console device. Described

 A secondary PV console device. Described in [console.txt](console.txt)

-#### ~/device/serial/$DEVID/* [HVM]
+#### ~/serial/$DEVID/* [HVM]

 An emulated serial device. Described in [console.txt](console.txt)

Places

File xsa178-0021-libxl-Document-serial-correctly.patch of Package xen.7673

Places