Credit: Jann Horn
Vulnerabilities like this one don’t exactly make us feel a calm state of enlightement when running the Xen hypervisor, especially when they are so skillfully exploited to run shell commands in every VM on the same host. It might be time to rename the Xen Hypervisor to the ThisIsFine Hypervisor.
x86: broken check in memory_exchange() permits PV guest breakout