Andrew Cooper writes ("Re: [Xen-devel] Livepatching and Xen Security"):
> livepatching doesn't use libelf.
>
> It is a new ELF parsing implementation.
I don't think we care very much about bugs in the livepatching elf
parser. The livepatches are all completely trusted in any case.
Furthermore, I don't think we consider the binary code or pieces of
the headers or bits of the livepatching loader tools memory map or
anything secret. So uninitialised structure bugs just leak things we
don't care about.
Does that make sense ?
Ian.
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
https://lists.xen.org/xen-devel
