On Thu, Dec 10, 2015 at 6:49 AM, Sarah Newman <srn at prgmr.com> wrote: > It looks like no XSA-142 patch, which is "libxl fails to honour readonly flag on disks with qemu-xen" has been applied to Xen4CentOS. I assume this > was on purpose? No, indeed it wasn't on purpose. Sorry that it dropped through the cracks. > If not, I can have someone try adding the original patch from http://xenbits.xen.org/xsa/advisory-142.html and some variant of the commit from > ef6cb76026628e26e3d1ae53c50ccde1c3c78b1b http://xen.1045712.n5.nabble.com/xen-master-libxl-relax-readonly-check-introduced-by-XSA-142-fix-td5729704.html . If you could send a pull request to https://github.com/CentOS-virt7/xen with those two patches imported into the patchqueue (and give me any feedback on the README which explains how to do it), that would be awesome. (Feel free to send a pull request pointing to a non-github git tree via e-mail as well if you wish.) Otherwise I'll try to get to it next week. -George