- bsc#962758 - VUL-0: CVE-2013-4539: xen: tsc210x: buffer overrun

on invalid state load CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch - bsc#962632 - VUL-0: CVE-2015-1779: xen: vnc: insufficient resource limiting in VNC websockets decoder CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch - bsc#962642 - VUL-0: CVE-2013-4537: xen: ssi-sd: buffer overrun on invalid state load CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch - bsc#962627 - VUL-0: CVE-2014-7815: xen: vnc: insufficient bits_per_pixel from the client sanitization CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch - bsc#962335 - VUL-0: CVE-2013-4538: xen: ssd0323: fix buffer overun on invalid state CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch - bsc#962360 - VUL-0: CVE-2015-7512: xen: net: pcnet: buffer overflow in non-loopback mode CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch - bsc#961692 - VUL-0: CVE-2016-1714: xen: nvram: OOB r/w access in processing firmware configurations CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch - bsc#961358 - VUL-0: CVE-2015-8613: xen: qemu: scsi: stack based buffer overflow in megasas_ctrl_get_info OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=395
2016-01-20 16:26:32 +00:00
parent 8292994238
commit 39134eb9d2
20 changed files with 1037 additions and 15 deletions
--- a/xen.spec
+++ b/xen.spec
@@ -163,7 +163,7 @@ BuildRequires:  xorg-x11-util-devel
 %endif
 %endif

-Version:        4.6.0_06
+Version:        4.6.0_08
 Release:        0
 Summary:        Xen Virtualization: Hypervisor (aka VMM aka Microkernel)
 License:        GPL-2.0
@@ -239,6 +239,8 @@ Patch16202:     xsa162-qemut.patch
 Patch164:       xsa164.patch
 Patch165:       xsa165.patch
 Patch166:       xsa166.patch
+Patch167:       xsa167.patch
+Patch168:       xsa168.patch
 # Upstream qemu
 Patch250:       VNC-Support-for-ExtendedKeyEvent-client-message.patch
 Patch251:       0001-net-move-the-tap-buffer-into-TAPState.patch
@@ -260,11 +262,26 @@ Patch266:       CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
 Patch267:       CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
 Patch268:       CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
 Patch269:       CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch
+Patch270:       CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
+Patch271:       CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch
+Patch272:       CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch
+Patch273:       CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
+Patch274:       CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch
+Patch275:       CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
+Patch276:       CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch
+Patch277:       CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
+Patch278:       CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
+Patch279:       CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
+Patch280:       CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch
+Patch281:       CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
+Patch282:       CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
+Patch283:       CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
+Patch284:       CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch
 # Our platform specific patches
-Patch301:       xen-destdir.patch
-Patch302:       vif-bridge-no-iptables.patch
-Patch303:       vif-bridge-tap-fix.patch
-Patch304:       xl-conf-default-bridge.patch
+Patch321:       xen-destdir.patch
+Patch322:       vif-bridge-no-iptables.patch
+Patch323:       vif-bridge-tap-fix.patch
+Patch324:       xl-conf-default-bridge.patch
 # Needs to go upstream
 Patch330:       suspend_evtchn_lock.patch
 Patch331:       xenpaging.doc.patch
@@ -565,6 +582,8 @@ Authors:
 %patch164 -p1
 %patch165 -p1
 %patch166 -p1
+%patch167 -p1
+%patch168 -p1
 # Upstream qemu patches
 %patch250 -p1
 %patch251 -p1
@@ -586,11 +605,26 @@ Authors:
 %patch267 -p1
 %patch268 -p1
 %patch269 -p1
+%patch270 -p1
+%patch271 -p1
+%patch272 -p1
+%patch273 -p1
+%patch274 -p1
+%patch275 -p1
+%patch276 -p1
+%patch277 -p1
+%patch278 -p1
+%patch279 -p1
+%patch280 -p1
+%patch281 -p1
+%patch282 -p1
+%patch283 -p1
+%patch284 -p1
 # Our platform specific patches
-%patch301 -p1
-%patch302 -p1
-%patch303 -p1
-%patch304 -p1
+%patch321 -p1
+%patch322 -p1
+%patch323 -p1
+%patch324 -p1
 # Needs to go upstream
 %patch330 -p1
 %patch331 -p1
@@ -855,8 +889,9 @@ for name in COPYING %SOURCE10 %SOURCE11 %SOURCE12; do
    install -m 644 $name $RPM_BUILD_ROOT/%{_defaultdocdir}/xen/
 done
 for name in vtpm.txt crashdb.txt \
-    xenpaging.txt xl-disk-configuration.txt xl-network-configuration.markdown \
-    xl-numa-placement.markdown; do
+    xenpaging.txt xl-disk-configuration.txt pci-device-reservations.txt \
+    xl-network-configuration.markdown xl-numa-placement.markdown \
+    xen-command-line.markdown xenstore-paths.markdown; do
    install -m 644 docs/misc/$name $RPM_BUILD_ROOT/%{_defaultdocdir}/xen/misc/
 done