Xen exploit! Juni 2012

Discussion in 'VPS (Virtual Private Server)' started by cpserv, 14 Jun 2012.

Thread Status:
Not open for further replies.
  1. cpserv

    cpserv Expert 1.0

    Messages:
    866
    Likes Received:
    123
    Trophy Points:
    43
    Abis mondar mandir nemu ini..

    Mail Index - xen.org

    monggo yg punya Xen VPS langsung cek + konfirmasi ke penyedia panelnya (solusvm/hypervm/dsb)
     
  2. BennyKusman

    BennyKusman Hosting Guru DWH Guardian Web Hosting (Company)

    Messages:
    2,234
    Likes Received:
    239
    Trophy Points:
    63
    makasih mas..
    btw, ini mas dapat noticenya dari mana ?subscribenya dimana ya mas ?

    trims
     
  3. cpserv

    cpserv Expert 1.0

    Messages:
    866
    Likes Received:
    123
    Trophy Points:
    43
    ngga pakde, sesuai isi thread diatas.. "abis mondar mandir".. hehehe saya nemu di LowEndTalk trus di WHT juga ada yang ngebahas, sekalian aja saya info-kan disini karena saya liat blom ada.

    klo mau subscribe di xen list klo ga salah per kategori yah? ini kayaqnya buat yg xen-announce : Xen-announce Info Page
     
  4. mixmaxspace

    mixmaxspace Hosting Guru

    Messages:
    1,235
    Likes Received:
    99
    Trophy Points:
    48
    Masih bingung baca noticenya. Paling baru untuk AMD, yang Intel apakah notice dbawahnya itu?
    Tolong share bagaimana cara update patchnya untuk INTEL. Thank you
     
  5. cpserv

    cpserv Expert 1.0

    Messages:
    866
    Likes Received:
    123
    Trophy Points:
    43
    yang paling gampang compile ulang kernelnya yang udah di patch Dom0 Kernel Versions - Xen

    barusan saya cek file yg xen 3.4 di atasnya begini :
    Code:
    diff -r 51bd1f172758 xen/arch/x86/x86_64/asm-offsets.c
    --- a/xen/arch/x86/x86_64/asm-offsets.c	Fri Sep 30 17:35:29 2011 -0400
    +++ b/xen/arch/x86/x86_64/asm-offsets.c	Thu May 24 12:41:08 2012 +0100

    default patch pada umumnya sih pake bawaannya command "diff" (klo diliat dari header diatas) :

    patch -p1 < namafile.patch

    coba aja jalanin man patch atau man diff mudah2an nemu solusinya.

    jangan lupa backup kernel/systemnya sblom ngepatch. just in case.
     
    sigmabisnis and mixmaxspace like this.
  6. cpserv

    cpserv Expert 1.0

    Messages:
    866
    Likes Received:
    123
    Trophy Points:
    43
    tapi kayaqnya ini ga spesific sama Xen aja deh. ini masalah di kernel intel (sama amd juga?) dan cuma Xen yg sampai detik ini nemuin/release bug fixnya.

    The Intel SYSRET privilege escalation – blog.xen.org

    jadi buat yang punya virtualisasi lain (hypervisor) silahkan di cek juga.
     
  7. cpserv

    cpserv Expert 1.0

    Messages:
    866
    Likes Received:
    123
    Trophy Points:
    43
    confirmed!! barusan check salah satu server ada kernel update : 2.6.18-308.8.2.el5

    salah satu yang ngebahas :
    Red Hat Security Advisory 2012-0721-01 ≈ Packet Storm

    @CG bisa tolong diganti judulnya ga? biar ga cuma dianggap Xen yang bermasalah?

    Brb bikin announcement maintenance dadakan :p
     
    nicosoftmedia likes this.
  8. vishualhost

    vishualhost Expert 2.0

    Messages:
    813
    Likes Received:
    81
    Trophy Points:
    28
    iya khusus server 64 bit sepertinya harus update dan patch juga , sudah dilakukan tadi emergency maintence setelah dpt info ini :D
     
  9. cpserv

    cpserv Expert 1.0

    Messages:
    866
    Likes Received:
    123
    Trophy Points:
    43
    berhubung udah direlease sama RH (termasuk centos) kayaqnya patch diatas udah ga perlu. cukup yum update aja. (termasuk xen).
     
    hostune likes this.
Loading...
Thread Status:
Not open for further replies.

Share This Page

Loading...