pool/xen
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
449 Commits 2 Branches 0 Tags 38 MiB
da53445dea
Commit Graph

449 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Charles Arnold
da53445dea - bsc#995785 - VUL-0: CVE-2016-7092: xen: x86: Disallow L3 
recursive pagetable for 32-bit PV guests (XSA-185)
  57d1563d-x86-32on64-don-t-allow-recursive-page-tables-from-L3.patch
- bsc#995789 - VUL-0: CVE-2016-7093: xen: x86: Mishandling of
  instruction pointer truncation during emulation (XSA-186)
  57d15679-x86-emulate-Correct-boundary-interactions-of-emulated-insns.patch
  57d18642-hvm-fep-Allow-test-insns-crossing-1-0-boundary.patch
- bsc#995792 - VUL-0: CVE-2016-7094: xen: x86 HVM: Overflow of
  sh_ctxt->seg_reg[] (XSA-187)
  57d1569a-x86-shadow-Avoid-overflowing-sh_ctxt-seg_reg.patch
  57d18642-x86-segment-Bounds-check-accesses-to-emulation-ctxt-seg_reg.patch
- bsc#991934 - xen hypervisor crash in csched_acct
  57c96df3-credit1-fix-a-race-when-picking-initial-pCPU.patch
- Upstream patches from Jan
  57c4412b-x86-HVM-add-guarding-logic-for-VMX-specific-code.patch
  57c57f73-libxc-correct-max_pfn-calculation-for-saving-domain.patch
  57c805bf-x86-levelling-restrict-non-architectural-OSXSAVE-handling.patch
  57c805c1-x86-levelling-pass-vcpu-to-ctxt_switch_levelling.patch
  57c805c3-x86-levelling-provide-architectural-OSXSAVE-handling.patch
  57c82be2-x86-32on64-adjust-call-gate-emulation.patch
  57c96e2c-x86-correct-PT_NOTE-file-position.patch
  57cfed43-VMX-correct-feature-checks-for-MPX-and-XSAVES.patch

- bsc#989679 - [pvusb feature] USB device not found when
  'virsh detach-device guest usb.xml'
  57c93e52-fix-error-in-libxl_device_usbdev_list.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=450
 2016-09-12 18:08:38 +00:00
Olaf Hering
ea9d7028da - bsc#979002 - add 60-persistent-xvd.rules and helper script 
also to initrd, add the relevant dracut helper

- bnc#953518 - unplug also SCSI disks in qemu-xen-traditional for
  upstream unplug protocol

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=449
 2016-09-12 13:29:42 +00:00
Charles Arnold
a9e5d7ffae - bsc#992224 - [HPS Bug] During boot of Xen Hypervisor, Failed to 
get contiguous memory for DMA from Xen
  57ac6316-don-t-restrict-DMA-heap-to-node-0.patch
- bsc#978755 - xen uefi systems fail to boot
- bsc#983697 - SLES12 SP2 Xen UEFI mode cannot boot
  57b71fc5-x86-EFI-don-t-apply-relocations-to-l-2-3-_bootmap.patch
- Upstream patch from Jan
  57b7447b-dont-permit-guest-to-populate-PoD-pages-for-itself.patch

- spec: to stay compatible with the in-tree qemu-xen binary, use
  /usr/bin/qemu-system-i386 instead of /usr/bin/qemu-system-x86_64
  bsc#986164

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=447
 2016-08-23 16:38:35 +00:00
Charles Arnold
a89d75605e - bsc#970135 - new virtualization project clock test randomly fails 
on Xen
  576001df-x86-time-use-local-stamp-in-TSC-calibration-fast-path.patch
  5769106e-x86-generate-assembler-equates-for-synthesized.patch
  57a1e603-x86-time-adjust-local-system-time-initialization.patch
  57a1e64c-x86-time-introduce-and-use-rdtsc_ordered.patch
  57a2f6ac-x86-time-calibrate-TSC-against-platform-timer.patch
- bsc#991934 - xen hypervisor crash in csched_acct
  57973099-have-schedulers-revise-initial-placement.patch
  579730e6-remove-buggy-initial-placement-algorithm.patch
- bsc#988675 - VUL-0: CVE-2016-6258: xen: x86: Privilege escalation
  in PV guests (XSA-182)
  57976073-x86-remove-unsafe-bits-from-mod_lN_entry-fastpath.patch
- bsc#988676 - VUL-0: CVE-2016-6259: xen: x86: Missing SMAP
  whitelisting in 32-bit exception / event delivery (XSA-183)
  57976078-x86-avoid-SMAP-violation-in-compat_create_bounce_frame.patch
- Upstream patches from Jan
  57a30261-x86-support-newer-Intel-CPU-models.patch

- bsc#985503 - vif-route broken
  vif-route.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=445
 2016-08-04 19:26:11 +00:00
Charles Arnold
c8a1704907 - bsc#978413 - PV guest upgrade from sles11sp4 to sles12sp2 alpha3 
failed on sles11sp4 xen host.
  pygrub-handle-one-line-menu-entries.patch

- bsc#990843 - VUL-1: CVE-2016-6351: xen: qemu: scsi: esp: OOB
  write access in esp_do_dma
  CVE-2016-6351-qemut-scsi-esp-make-cmdbuf-big-enough-for-maximum-CDB-size.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=444
 2016-07-29 21:59:43 +00:00
Charles Arnold
5859155d6b - bsc#900418 - Dump cannot be performed on SLES12 XEN 
57580bbd-kexec-allow-relaxed-placement-via-cmdline.patch
- Upstream patches from Jan
  575e9ca0-nested-vmx-Validate-host-VMX-MSRs-before-accessing-them.patch
  57640448-xen-sched-use-default-scheduler-upon-an-invalid-sched.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=442
 2016-06-23 17:52:49 +00:00
Charles Arnold
82ff4f51e5 - bsc#954872 - script block-dmmd not working as expected - libxl: 
error: libxl_dm.c (Additional fixes)
  block-dmmd

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=441
 2016-06-21 14:56:06 +00:00
Charles Arnold
fe96474232 - fate#319989 - Update to Xen 4.7 FCS 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=440
 2016-06-21 14:46:28 +00:00
Charles Arnold
5a38fd93da - fate#319989 - Update to Xen 4.7 RC6 
xen-4.7.0-testing-src.tar.bz2
- Drop CVE-2014-3672-qemut-xsa180.patch
  via prjconf
  via prjconf
- Update to the latest Xen 4.7 pre-release c2994f86

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=439
 2016-06-16 17:54:29 +00:00
Charles Arnold
bece3c5621 Add fate number to comment 
via prjconf (fate#320836)
  via prjconf (fate#320836)

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=437
 2016-06-13 16:20:25 +00:00
Olaf Hering
14bcab8770 - Convert with_stubdom into build_conditional to allow adjusting 
via prjconf
- Convert with_debug into build_conditional to allow adjusting
  via prjconf

- bsc#979002 - add 60-persistent-xvd.rules and helper script to
  xen-tools-domU to simplify transition to pvops based kernels
  

- Convert with_oxenstored into build_conditional to allow
  adjusting via prjconf (fate#320836)

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=436
 2016-06-13 15:52:20 +00:00
Charles Arnold
28ce061413 - bsc#983984 - VUL-0: CVE-2016-5338: xen: qemu: scsi: esp: OOB r/w 
access while processing ESP_FIFO 
  CVE-2016-5338-qemut-scsi-esp-OOB-rw-access-while-processing-ESP_FIFO.patch
- bsc#982960 - VUL-0: CVE-2016-5238: xen: qemu: scsi: esp: OOB
  write when using non-DMA mode in get_cmd
  CVE-2016-5238-qemut-scsi-esp-OOB-write-when-using-non-DMA-mode-in-get_cmd.patch

- fate#319989 - Update to Xen 4.7 RC5
  xen-4.7.0-testing-src.tar.bz2

- bsc#954872 - script block-dmmd not working as expected - libxl:
  error: libxl_dm.c (another modification)
  block-dmmd

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=435
 2016-06-09 22:06:26 +00:00
Charles Arnold
6f47abb900 - fate#319989 - Update to Xen 4.7 RC4 
xen-4.7.0-testing-src.tar.bz2
- Dropped
  xen.pkgconfig-4.7.patch
  xsa164.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=434
 2016-05-26 19:33:01 +00:00
Charles Arnold
1fed24fd43 - bsc#981264 - VUL-0: CVE-2014-3672: xen: Unrestricted qemu logging 
(XSA-180)
  CVE-2014-3672-qemut-xsa180.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=433
 2016-05-24 14:34:11 +00:00
Charles Arnold
10a6644014 - bsc#980724 - VUL-0: CVE-2016-4441: Qemu: scsi: esp: OOB write 
while writing to 's->cmdbuf' in get_cmd
  CVE-2016-4441-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-get_cmd.patch
- bsc#980716 - VUL-0: CVE-2016-4439: xen: scsi: esp: OOB write
  while writing to 's->cmdbuf' in esp_reg_write
  CVE-2016-4439-qemut-scsi-esp-OOB-write-while-writing-to-cmdbuf-in-esp_reg_write.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=432
 2016-05-23 20:09:30 +00:00
Charles Arnold
4f50b78353 - fate#319989 - Update to Xen 4.7 RC3 
xen-4.7.0-testing-src.tar.bz2
- Dropped
  libxl-remove-cdrom-cachemode.patch
  x86-PoD-only-reclaim-if-needed.patch
  gcc6-warnings-as-errors.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=431
 2016-05-17 16:48:17 +00:00
Charles Arnold
f0be2374a0 - fate#319989 - Update to Xen 4.7 RC2 
xen-4.7.0-testing-src.tar.bz2

- bsc#961600 - L3: poor performance when Xen HVM domU configured
  with max memory > current memory
  x86-PoD-only-reclaim-if-needed.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=430
 2016-05-10 22:03:52 +00:00
Charles Arnold
66b4cba252 - fate#319989 - Update to Xen 4.7 RC1 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=429
 2016-05-06 14:22:43 +00:00
Olaf Hering
25d4901211 - Mark SONAMEs and pkgconfig as xen 4.7 
xen.pkgconfig-4.7.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=428
 2016-05-06 11:49:59 +00:00
Charles Arnold
b658abd60f - bsc#977329 - Xen: Cannot boot HVM guests with empty cdrom 
libxl-remove-cdrom-cachemode.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=427
 2016-05-04 22:34:20 +00:00
Charles Arnold
eb83ba8f31 - Update to Xen 4.7 RC1 
xen-4.7.0-testing-src.tar.bz2

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=426
 2016-05-03 17:07:53 +00:00
Olaf Hering
ad4da5f656 - fate#316614: set migration constraints from cmdline 
restore libxl.set-migration-constraints-from-cmdline.patch

- Remove obsolete patch for xen-kmp
  magic_ioport_compat.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=425
 2016-05-03 13:58:22 +00:00
Olaf Hering
8581c7370b Require at least autoconf 2.67 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=424
 2016-05-03 08:51:29 +00:00
Olaf Hering
e3bf008636 - fate#316613: update to v12 
libxl.pvscsi.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=423
 2016-05-03 07:45:05 +00:00
Charles Arnold
6739a9c3f5 - Update to the latest Xen 4.7 pre-release c2994f86 (fate#319989) 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=422
 2016-04-29 22:59:30 +00:00
Charles Arnold
f07bdefddb Fix with_oxenstored flag to package things correctly 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=421
 2016-04-27 18:28:08 +00:00
Charles Arnold
71a94eb539 - Update to the latest Xen 4.7 pre-release f3a7ca02 (fate#319989) 
Drop libxl.migrate-legacy-stream-read.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=420
 2016-04-19 16:54:05 +00:00
Olaf Hering
b35f1092d6 - bnc#972756 - Can't migrate HVM guest from SLES12SP1 Xen host 
to SLES12SP2 Alpha 1 host using xl migrate 
  libxl.migrate-legacy-stream-read.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=419
 2016-04-15 09:37:54 +00:00
Olaf Hering
4e1888481a xen-cpuid is dom0-only 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=418
 2016-04-14 12:34:00 +00:00
Olaf Hering
7dfc774710 xen-cpuid is x86-only 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=417
 2016-04-14 10:41:52 +00:00
Charles Arnold
92ed83b0e8 - Add patches from proposed upstream series to load BIOS's from 
the toolstack instead of embedding in hvmloader
  http://lists.xenproject.org/archives/html/xen-devel/2016-03/msg01626.html
  0001-libxc-Rework-extra-module-initialisation.patch,
  0002-libxc-Prepare-a-start-info-structure-for-hvmloader.patch,
  0003-configure-define-SEABIOS_PATH-and-OVMF_PATH.patch,
  0004-firmware-makefile-install-BIOS-blob.patch,
  0005-libxl-Load-guest-BIOS-from-file.patch,
  0006-xen-Move-the-hvm_start_info-C-representation-from-li.patch,
  0007-hvmloader-Grab-the-hvm_start_info-pointer.patch,
  0008-hvmloader-Locate-the-BIOS-blob.patch,
  0009-hvmloader-Check-modules-whereabouts-in-perform_tests.patch,
  0010-hvmloader-Load-SeaBIOS-from-hvm_start_info-modules.patch,
  0011-hvmloader-Load-OVMF-from-modules.patch,
  0012-hvmloader-Specific-bios_load-function-required.patch,
  0013-hvmloader-Always-build-in-SeaBIOS-and-OVMF-loader.patch,
  0014-configure-do-not-depend-on-SEABIOS_PATH-or-OVMF_PATH.patch
- Enable support for UEFI on x86_64 using the ovmf-x86_64-ms.bin
  firmware from qemu-ovmf-x86_64. The firmware is preloaded with
  Microsoft keys to more closely resemble firmware on real hardware
  FATE#320490

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=416
 2016-04-13 19:43:10 +00:00
Charles Arnold
429a42ebfe - fate#319989: Update to Xen 4.7 (pre-release) 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=415
 2016-03-28 22:57:09 +00:00
Charles Arnold
f18f683ba6 - Update to Xen 4.7 pre-release 
xen-4.7.0-testing-src.tar.bz2
- Dropped:
  xen-4.6.1-testing-src.tar.bz2
  55f7f9d2-libxl-slightly-refine-pci-assignable-add-remove-handling.patch
  5628fc67-libxl-No-emulated-disk-driver-for-xvdX-disk.patch
  5644b756-x86-HVM-don-t-inject-DB-with-error-code.patch
  5649bcbe-libxl-relax-readonly-check-introduced-by-XSA-142-fix.patch
  hotplug-Linux-block-performance-fix.patch
  set-mtu-from-bridge-for-tap-interface.patch
  xendomains-libvirtd-conflict.patch
  xsa154.patch
  xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
  xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
  xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
  xsa170.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=414
 2016-03-25 22:10:02 +00:00
Charles Arnold
321d8bf36d - Use system SeaBIOS instead of building/installing another one 
FATE#320638
  Dropped files:
  seabios-dir-remote.tar.bz2
  xen-c99-fix.patch
  xen.build-compare.seabios.patch

- spec: drop BuildRequires that were only needed for qemu-xen

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=413
 2016-03-23 20:51:29 +00:00
Charles Arnold
a954e08dfb - bsc#969377 - xen does not build with GCC 6 
ipxe-use-rpm-opt-flags.patch
  gcc6-warnings-as-errors.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=411
 2016-03-04 23:20:29 +00:00
Charles Arnold
e1fd44e3dc CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch 
CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch
  CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch
  xsa162-qemuu.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=410
 2016-03-03 23:46:38 +00:00
Charles Arnold
34e227c51f - Drop xsa154-fix.patch 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=409
 2016-03-03 23:37:42 +00:00
Charles Arnold
b87fe0a367 - bsc#969351 - VUL-0: CVE-2016-2841: xen: net: ne2000: infinite 
loop in ne2000_receive
  CVE-2016-2841-qemut-ne2000-infinite-loop-in-ne2000_receive.patch

- Use system qemu instead of building/installing yet another qemu
  FATE#320638
- Dropped files
  qemu-xen-dir-remote.tar.bz2
  CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch
  CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
  CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
  CVE-2015-4037-qemuu-smb-config-dir-name.patch
  CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
  CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
  CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
  CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
  CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
  CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch
  CVE-2015-8613-qemuu-scsi-initialise-info-object-with-appropriate-size.patch
  CVE-2015-8743-qemuu-ne2000-OOB-memory-access-in-ioport-rw-functions.patch
  CVE-2015-8744-qemuu-net-vmxnet3-incorrect-l2-header-validation-leads-to-crash.patch
  CVE-2015-8745-qemuu-net-vmxnet3-read-IMR-registers-instead-of-assert.patch
  CVE-2016-1568-qemuu-ide-ahci-reset-ncq-object-to-unused-on-error.patch
  CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
  CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch
  qemu-xen-enable-spice-support.patch
  qemu-xen-upstream-qdisk-cache-unsafe.patch
  tigervnc-long-press.patch
- bsc#964452 - VUL-0: CVE-2013-4534: xen: openpic: buffer overrun
  on incoming migration

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=408
 2016-03-03 22:36:20 +00:00
Charles Arnold
6636a216d1 - bsc#969125 - VUL-0: CVE-2015-8817: xen: OOB access in 
address_space_rw leads to segmentation fault (I)
  CVE-2015-8817-qemuu-OOB-access-in-address_space_rw-leads-to-segmentation-fault.patch
- bsc#969126 - VUL-0: CVE-2015-8818: xen: OOB access in
  address_space_rw leads to segmentation fault (II)
  CVE-2015-8818-qemuu-OOB-access-in-address_space_rw-leads-to-segmentation-fault.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=407
 2016-03-02 22:05:55 +00:00
Charles Arnold
a6308422ce qemu_new_timer should be using vm_clock, not QEMU_CLOCK_VIRTUAL 
in the old qemu

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=406
 2016-03-02 17:40:10 +00:00
Charles Arnold
95d1280885 - bsc#962321 - VUL-0: CVE-2016-1922: xen: i386: null pointer 
dereference in vapic_write()
  CVE-2016-1922-qemuu-i386-null-pointer-dereference-in-vapic_write.patch
  CVE-2016-2391-qemut-usb-null-pointer-dereference-in-ohci-module.patch
- bsc#965112 - VUL-0: CVE-2014-3640: xen: slirp: NULL pointer deref
  in sosendto()
  CVE-2014-3640-qemut-slirp-NULL-pointer-deref-in-sosendto.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=404
 2016-03-01 21:45:58 +00:00
Charles Arnold
5ef52f56fd - bsc#968004 - VUL-0: CVE-2016-2538: xen: usb: integer overflow in 
remote NDIS control message handling
  CVE-2016-2538-qemuu-usb-integer-overflow-in-remote-NDIS-message-handling.patch
- Update libxl to recognize dmmd and npiv prefix in disk spec
  xen.libxl.dmmd.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=403
 2016-02-26 20:09:00 +00:00
Charles Arnold
4f6abaa92b - bsc#954872 - L3: script block-dmmd not working as expected - 
libxl: error: libxl_dm.c
  block-dmmd

- bsc#967101 - VUL-0: CVE-2016-2391: xen: usb: multiple eof_timers
  in ohci module leads to null pointer dereference
  CVE-2016-2391-qemuu-usb-null-pointer-dereference-in-ohci-module.patch
- bsc#967090 - VUL-0: CVE-2016-2392: xen: usb: null pointer
  dereference in remote NDIS control message handling
  CVE-2016-2392-qemuu-usb-null-pointer-dereference-in-NDIS-message-handling.patch

- bsc#965315 - VUL-0: CVE-2016-2270: xen: x86: inconsistent
  cachability flags on guest mappings (XSA-154)
  xsa154.patch
  xsa154-fix.patch
- bsc#965317 - VUL-0: CVE-2016-2271: xen: VMX: guest user mode may
  crash guest with non-canonical RIP (XSA-170)
  xsa170.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=401
 2016-02-22 20:37:58 +00:00
Charles Arnold
077467ba5e Remove redundant entry 
OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=400
 2016-02-12 20:43:48 +00:00
Charles Arnold
31905d81fa - Update to Xen Version 4.6.1 
xen-4.6.1-testing-src.tar.bz2
- Dropped patches now contained in tarball or unnecessary
  xen-4.6.0-testing-src.tar.bz2
  5604f239-x86-PV-properly-populate-descriptor-tables.patch
  561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch
  561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch
  561d20a0-x86-hide-MWAITX-from-PV-domains.patch
  561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch
  5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch
  56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch
  56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch
  5632127b-x86-guard-against-undue-super-page-PTE-creation.patch
  5632129c-free-domain-s-vcpu-array.patch
  563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch
  563212e4-xenoprof-free-domain-s-vcpu-array.patch
  563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch
  56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch
  56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch
  5641ceec-x86-HVM-always-intercept-AC-and-DB.patch
  56549f24-x86-vPMU-document-as-unsupported.patch
  5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch
  xen-4.6.0-testing-src.tar.bz2
  xsa155-qemut-qdisk-double-access.patch
  xsa155-qemut-xenfb.patch
  xsa155-qemuu-qdisk-double-access.patch
  xsa155-qemuu-xenfb.patch
  xsa159.patch
  xsa160.patch
  xsa162-qemut.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=399
 2016-02-12 16:58:27 +00:00
Charles Arnold
9b39a3d650 - bsc#964947 - VUL-0: CVE-2015-5278: xen: Infinite loop in 
ne2000_receive() function
  CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch
- bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100:
  infinite loop in processing command block list
  CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch
  CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch

- bsc#964644 - VUL-0: CVE-2013-4533: xen pxa2xx: buffer overrun on
  incoming migration
  CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch
- bsc#964925 - VUL-0: CVE-2014-0222: xen: qcow1: validate L2 table
  size to avoid integer overflows
  CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch
- Dropped CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch

- bsc#964415 - VUL-1: CVE-2016-2198: xen: usb: ehci null pointer
  dereference in ehci_caps_write
  CVE-2016-2198-qemuu-usb-ehci-null-pointer-dereference-in-ehci_caps_write.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=397
 2016-02-03 21:39:15 +00:00
Charles Arnold
fbfd58d3a2 - bsc#963783 - VUL-1: CVE-2016-1981: xen: net: e1000 infinite loop 
in start_xmit and e1000_receive_iov routines
  CVE-2016-1981-qemuu-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch
  CVE-2016-1981-qemut-e1000-eliminate-infinite-loops-on-out-of-bounds-transfer.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=396
 2016-01-27 20:31:39 +00:00
Charles Arnold
39134eb9d2 - bsc#962758 - VUL-0: CVE-2013-4539: xen: tsc210x: buffer overrun 
on invalid state load
  CVE-2013-4539-qemut-tsc210x-fix-buffer-overrun-on-invalid-state-load.patch

- bsc#962632 - VUL-0: CVE-2015-1779: xen: vnc: insufficient
  resource limiting in VNC websockets decoder
  CVE-2015-1779-qemuu-limit-size-of-HTTP-headers-from-websockets-clients.patch
  CVE-2015-1779-qemuu-incrementally-decode-websocket-frames.patch
- bsc#962642 - VUL-0: CVE-2013-4537: xen: ssi-sd: buffer overrun on
  invalid state load
  CVE-2013-4537-qemut-ssi-sd-fix-buffer-overrun-on-invalid-state-load.patch
- bsc#962627 - VUL-0: CVE-2014-7815: xen: vnc: insufficient
  bits_per_pixel from the client sanitization
  CVE-2014-7815-qemut-vnc-sanitize-bits_per_pixel-from-the-client.patch

- bsc#962335 - VUL-0: CVE-2013-4538: xen: ssd0323: fix buffer
  overun on invalid state
  CVE-2013-4538-qemut-ssd0323-fix-buffer-overun-on-invalid-state.patch
- bsc#962360 - VUL-0: CVE-2015-7512: xen: net: pcnet: buffer
  overflow in non-loopback mode
  CVE-2015-7512-qemuu-net-pcnet-buffer-overflow-in-non-loopback-mode.patch
  CVE-2015-7512-qemut-net-pcnet-buffer-overflow-in-non-loopback-mode.patch

- bsc#961692 - VUL-0: CVE-2016-1714: xen: nvram: OOB r/w access in
  processing firmware configurations
  CVE-2016-1714-qemuu-fw_cfg-add-check-to-validate-current-entry-value.patch
  CVE-2016-1714-qemut-fw_cfg-add-check-to-validate-current-entry-value.patch

- bsc#961358 - VUL-0: CVE-2015-8613: xen: qemu: scsi: stack based
  buffer overflow in megasas_ctrl_get_info

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=395
 2016-01-20 16:26:32 +00:00
Charles Arnold
8292994238 - bsc#960093 - VUL-0: CVE-2015-8615: xen: x86: unintentional 
logging upon guest changing callback method (XSA-169)
  5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch

- bsc#959387 - VUL-0: CVE-2015-8568 CVE-2015-8567: xen: qemu: net:
  vmxnet3: host memory leakage
  CVE-2015-8568-qemuu-net-vmxnet3-avoid-memory-leakage-in-activate_device.patch

- bsc#957988 - VUL-0: CVE-2015-8550: xen: paravirtualized drivers
  incautious about shared memory contents (XSA-155)
  xsa155-xen-0001-xen-Add-RING_COPY_REQUEST.patch
  xsa155-xen-0002-blktap2-Use-RING_COPY_REQUEST.patch
  xsa155-xen-0003-libvchan-Read-prod-cons-only-once.patch
  xsa155-qemuu-qdisk-double-access.patch
  xsa155-qemut-qdisk-double-access.patch
  xsa155-qemuu-xenfb.patch
  xsa155-qemut-xenfb.patch
- bsc#959006 - VUL-0: CVE-2015-8558: xen: qemu: usb: infinite loop
  in ehci_advance_state results in DoS
  CVE-2015-8558-qemuu-usb-infinite-loop-in-ehci_advance_state-results-in-DoS.patch
- bsc#958918 - VUL-0: CVE-2015-7549: xen: qemu pci: null pointer
  dereference issue
  CVE-2015-7549-qemuu-pci-null-pointer-dereference-issue.patch
- bsc#958493 - VUL-0: CVE-2015-8504: xen: qemu: ui: vnc: avoid
  floating point exception
  CVE-2015-8504-qemuu-vnc-avoid-floating-point-exception.patch
  CVE-2015-8504-qemut-vnc-avoid-floating-point-exception.patch
- bsc#958007 - VUL-0: CVE-2015-8554: xen: qemu-dm buffer overrun in
  MSI-X handling (XSA-164)
  xsa164.patch

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=393
 2016-01-04 22:25:00 +00:00
Olaf Hering
881e6522ea - Adjust xen-dom0-modules.service to run Before xenstored.service 
instead of proc-xen.mount to workaround a bug in systemd "design"
  (bnc#959845)

OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=391
 2015-12-21 09:15:12 +00:00