| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: xen-libs | Distribution: Fedora Project |
| Version: 4.13.3 | Vendor: Fedora Project |
| Release: 1.fc32 | Build date: Mon Mar 29 23:36:41 2021 |
| Group: Unspecified | Build host: buildhw-x86-03.iad2.fedoraproject.org |
| Size: 1849728 | Source RPM: xen-4.13.3-1.fc32.src.rpm |
| Packager: Fedora Project | |
| Url: http://xen.org/ | |
| Summary: Libraries for Xen tools | |
This package contains the libraries needed to run applications which manage Xen virtual machines.
GPLv2+ and LGPLv2+ and BSD
* Mon Mar 29 2021 Michael Young <m.a.young@durham.ac.uk> - 4.13.3-1
- update to 4.13.3
remove patches now included or superceded upstream
adjust xen.hypervisor.config
* Thu Mar 18 2021 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-8
- HVM soft-reset crashes toolstack [XSA-368, CVE-2021-28687] (#1940610)
* Wed Feb 17 2021 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-7
- Linux: display frontend "be-alloc" mode is unsupported (comment only)
[XSA-363, CVE-2021-26934] (#1929549)
- arm: The cache may not be cleaned for newly allocated scrubbed pages
[XSA-364, CVE-2021-26933] (#1929547)
* Thu Jan 21 2021 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-6
- IRQ vector leak on x86 [XSA-360]
* Wed Dec 16 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-5
- xenstore watch notifications lacking permission checks [XSA-115,
CVE-2020-29480] (#1908091)
- Xenstore: new domains inheriting existing node permissions [XSA-322,
CVE-2020-29481] (#1908095)
- Xenstore: wrong path length check [XSA-323, CVE-2020-29482] (#1908096)
- Xenstore: guests can crash xenstored via watchs [XSA-324, CVE-2020-29484]
(#1908088)
- Xenstore: guests can disturb domain cleanup [XSA-325, CVE-2020-29483]
(#1908087)
- oxenstored memory leak in reset_watches [XSA-330, CVE-2020-29485]
(#1908000)
- undue recursion in x86 HVM context switch code [XSA-348, CVE-2020-29566]
(#1908085)
- oxenstored: node ownership can be changed by unprivileged clients
[XSA-352, CVE-2020-29486] (#1908003)
- oxenstored: permissions not checked on root node [XSA-353, CVE-2020-29479]
(#1908002)
- FIFO event channels control block related ordering [XSA-358,
CVE-2020-29570] (#1907931)
- FIFO event channels control structure ordering [XSA-359, CVE-2020-29571]
(#1908089)
* Tue Nov 24 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-4
- stack corruption from XSA-346 change [XSA-355]
* Mon Nov 23 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-3
- support zstd compressed kernels (dom0 only) based on linux kernel code
* Tue Nov 10 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-2
- Information leak via power sidechannel [XSA-351, CVE-2020-28368]
(#1897146)
* Tue Nov 03 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.2-1
- update to 4.13.2
remove patches now included or superceded upstream
* Wed Oct 28 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-8
- x86 PV guest INVLPG-like flushes may leave stale TLB entries
[XSA-286, CVE-2020-27674] (#1891092)
* Tue Oct 20 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-7
- x86: Race condition in Xen mapping code [XSA-345, CVE-2020-27672]
(#1891097)
- undue deferral of IOMMU TLB flushes [XSA-346, CVE-2020-27671]
(#1891093)
- unsafe AMD IOMMU page table updates [XSA-347 CVE-2020-27670]
(#1891088)
* Tue Sep 22 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-6
- x86 pv: Crash when handling guest access to MSR_MISC_ENABLE [XSA-333,
CVE-2020-25602] (#1881619)
- Missing unlock in XENMEM_acquire_resource error path [XSA-334,
CVE-2020-25598] (#1881616)
- race when migrating timers between x86 HVM vCPU-s [XSA-336,
CVE-2020-25604] (#1881618)
- PCI passthrough code reading back hardware registers [XSA-337,
CVE-2020-25595] (#1881587)
- once valid event channels may not turn invalid [XSA-338, CVE-2020-25597]
(#1881588)
- x86 pv guest kernel DoS via SYSENTER [XSA-339, CVE-2020-25596]
(#1881617)
- Missing memory barriers when accessing/allocating an event channel [XSA-340,
CVE-2020-25603] (#1881583)
- out of bounds event channels available to 32-bit x86 domains [XSA-342,
CVE-2020-25600] (#1881582)
- races with evtchn_reset() [XSA-343, CVE-2020-25599] (#1881581)
- lack of preemption in evtchn_reset() / evtchn_destroy() [XSA-344,
CVE-2020-25601] (#1881586)
* Tue Aug 25 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-5
- QEMU: usb: out-of-bounds r/w access issue [XSA-335, CVE-2020-14364]
(#1871850)
* Tue Jul 07 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-4
- incorrect error handling in event channel port allocation leads to
DoS [XSA-317, CVE-2020-15566] (#1854465)
- inverted code paths in x86 dirty VRAM tracking leads to DoS
[XSA-319, CVE-2020-15563] (#1854463)
- xen: insufficient cache write-back under VT-d leads to DoS
[XSA-321, CVE-2020-15565] (#1854467)
- missing alignment check in VCPUOP_register_vcpu_info leads to DoS
[XSA-327, CVE-2020-15564] (#1854458)
- non-atomic modification of live EPT PTE leads to DoS
[XSA-328, CVE-2020-15567] (#1854464)
* Tue Jun 30 2020 Jeff Law <law@redhat.com>
Disable LTO
* Wed Jun 10 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-3
- Special Register Buffer speculative side channel [XSA-320]
* Tue May 26 2020 Miro Hrončok <mhroncok@redhat.com> - 4.13.1-2
- Rebuilt for Python 3.9
* Tue May 19 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-1
- update to 4.13.1
remove patches now included or superceded upstream
* Tue May 05 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-8
- build aarch64 hypervisor with -mno-outline-atomics to fix gcc 10 build
* Tue Apr 14 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-7
- multiple xenoprof issues [XSA-313, CVE-2020-11740, CVE-2020-11741]
(#1823912, #1823914)
- Missing memory barriers in read-write unlock paths [XSA-314,
CVE-2020-11739] (#1823784)
- Bad error path in GNTTABOP_map_grant [XSA-316, CVE-2020-11743] (#1823926)
- Bad continuation handling in GNTTABOP_copy [XSA-318, CVE-2020-11742]
(#1823943)
* Tue Mar 17 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-6
- fix issues in pygrub dependency found by python 3.8
* Tue Mar 10 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-5
- setting for --with-system-ipxe should be a rom file (#1778516)
- add weak depends on ipxe-roms-qemu and qemu-system-x86-core
* Fri Jan 31 2020 Fedora Release Engineering <releng@fedoraproject.org> - 4.13.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Wed Jan 22 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-3
- build fixes for OCaml 4.10.0 and gcc 10
* Tue Jan 14 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-2
- arm: a CPU may speculate past the ERET instruction [XSA-312]
- use more explicit library names
- add weak requires for perl (/etc/xen/scripts/locking.sh)
* Wed Dec 18 2019 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-1
- update to 4.13.0
remove patches now included or superceded upstream
adjust xen.hypervisor.config
/usr/sbin/xen-tmem-list-parse has been removed
pkgconfig files have moved to %{_libdir}/pkgconfig
/usr/sbin/xen-ucode has been added (x86 only)
* Sun Dec 15 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-9
- fix build with OCaml 4.09.0
* Wed Dec 11 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-8
- denial of service in find_next_bit() [XSA-307, CVE-2019-19581,
CVE-2019-19582] (#1782211)
- denial of service in HVM/PVH guest userspace code [XSA-308,
CVE-2019-19583] (#1782206)
- privilege escalation due to malicious PV guest [XSA-309, CVE-2019-19578]
(#1782210)
- Further issues with restartable PV type change operations [XSA-310,
CVE-2019-19580] (#1782207)
- vulnerability in dynamic height handling for AMD IOMMU pagetables
[XSA-311, CVE-2019-19577] (#1782208)
- add patches needed to apply XSA-311
* Tue Nov 26 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-7
- Device quarantine for alternate pci assignment methods [XSA-306,
CVE-2019-19579] (#1780559)
* Tue Nov 12 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-6
- add missing XSA-299 patches
* Tue Nov 12 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-5
- x86: Machine Check Error on Page Size Change DoS [XSA-304, CVE-2018-12207]
- TSX Asynchronous Abort speculative side channel [XSA-305, CVE-2019-11135]
* Thu Oct 31 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-4
- VCPUOP_initialise DoS [XSA-296, CVE-2019-18420] (#1771368)
- missing descriptor table limit checking in x86 PV emulation [XSA-298,
CVE-2019-18425] (#1771341)
- Issues with restartable PV type change operations [XSA-299, CVE-2019-18421]
(#1767726)
- add-to-physmap can be abused to DoS Arm hosts [XSA-301, CVE-2019-18423]
(#1771345)
- passed through PCI devices may corrupt host memory after deassignment
[XSA-302, CVE-2019-18424] (#1767731)
- ARM: Interrupts are unconditionally unmasked in exception handlers
[XSA-303, CVE-2019-18422] (#1771443)
* Thu Oct 03 2019 Miro Hrončok <mhroncok@redhat.com> - 4.12.1-3
- Rebuilt for Python 3.8.0rc1 (#1748018)
* Mon Aug 19 2019 Miro Hrončok <mhroncok@redhat.com> - 4.12.1-2
- Rebuilt for Python 3.8
* Fri Aug 09 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-1
- update to 4.12.1
remove patches for issues now fixed upstream
adjust xen.gcc9.fixes.patch
* Sat Jul 27 2019 Fedora Release Engineering <releng@fedoraproject.org> - 4.12.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Wed Jun 19 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.0-4
- Unlimited Arm Atomics Operations [XSA-295, CVE-2019-17349,
CVE-2019-17350] (#1720760)
- some debug files are now properly packaged in debuginfo rpms
* Tue Jun 18 2019 Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>
- Fix build with python3.8 (#1704807)
* Sat Jun 01 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.0-3
- fix HVM DomU boot on some chipsets
- fix expected FTBFS with Python 3.8 (#1704807)
- adjust grub2 workaround
* Tue May 14 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.0-2
- Microarchitectural Data Sampling speculative side channel [XSA-297,
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091]
- additional patches so above applies cleanly
- work around grub2 issues in dom0
* Fri Apr 05 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.0-1
- update to 4.12.0 (#1694695)
remove patches for issues now fixed upstream
replace xen.use.fedora.ipxe.patch with --with-system-ipxe
drop xen.glibcfix.patch xen.gcc8.temp.fix.patch which are no longer needed
adjust xen.python.env.patch xen.gcc9.fixes.patch
xen.hypervisor.config refresh
kdd is now xen-kdd, xenmon.py is now xenmon, fsimage.so is now xenfsimage.so
fs libdir is now xenfsimage libdir
xen-ringwatch xen-bugtool have been dropped
- remove remaining traces of efiming and efi_flags logic
- switch from python2 to python3
- drop systemd_postun and renumber patches
/usr/lib/.build-id /usr/lib/.build-id/01 /usr/lib/.build-id/01/5ecafbc79eef673be5bc8cde24639e35d3d5de /usr/lib/.build-id/08 /usr/lib/.build-id/08/3d4a254a5e3852d8de14552f05d6b7728cec27 /usr/lib/.build-id/14 /usr/lib/.build-id/14/c4a11903a993020e3e1bdfe5ddfbf082aaa16c /usr/lib/.build-id/23 /usr/lib/.build-id/23/b027ccb32ce613e7c798e7ac8d35e4cb895129 /usr/lib/.build-id/3f /usr/lib/.build-id/3f/f3eff889c7aa3720d43e156f13f9315280c53e /usr/lib/.build-id/44 /usr/lib/.build-id/44/421ec3308526f4f8c47e319f231219d50ba8a5 /usr/lib/.build-id/45 /usr/lib/.build-id/45/46ffc20807372b8ad34f1c87d675096882bf23 /usr/lib/.build-id/5d /usr/lib/.build-id/5d/f803bfe057542536e4469b5c7071c47510dbe1 /usr/lib/.build-id/93 /usr/lib/.build-id/93/3c62f742ff4ad67db395452be49affda905d8a /usr/lib/.build-id/99 /usr/lib/.build-id/99/128d79b0fb775f7b147feb1c663c238711860c /usr/lib/.build-id/9b /usr/lib/.build-id/9b/327c9fd15a13394b9c1a374c1aea9fdb8827c5 /usr/lib/.build-id/a4 /usr/lib/.build-id/a4/777587c88b7a477a04826b2aec20165a167414 /usr/lib/.build-id/a6 /usr/lib/.build-id/a6/c26741c2c80c491a73cd09b1949a839d16f1d0 /usr/lib/.build-id/a8 /usr/lib/.build-id/a8/42c5c64a327b51ba1c71df2655f3e077b72c2c /usr/lib/.build-id/b4 /usr/lib/.build-id/b4/72e7d9f3d3b14b925097c2d3ee221d7ae90cf2 /usr/lib/.build-id/c2 /usr/lib/.build-id/c2/4ac65d5382152e64784c074d1f8e804df88f0b /usr/lib/.build-id/c6 /usr/lib/.build-id/c6/be3a489730e9c12c2135257a2ad84f66ba72a8 /usr/lib/.build-id/cb /usr/lib/.build-id/cb/615edffa401fffc23b5fd334f83f7b8dd86866 /usr/lib/.build-id/d2 /usr/lib/.build-id/d2/95cc7c1ad896638141e19974bb56ebb51c2df7 /usr/lib/.build-id/dc /usr/lib/.build-id/dc/b7122b4c7a5ea96e0bfb3c9cf46bdc64aca07e /usr/lib/.build-id/e7 /usr/lib/.build-id/e7/61c48c422311d28b6306782e338eb1edea9347 /usr/lib/.build-id/e8 /usr/lib/.build-id/e8/116a4f2434c052abd2bf5ab593aaaab7dbc3e5 /usr/lib64/libxencall.so.1 /usr/lib64/libxencall.so.1.2 /usr/lib64/libxenctrl.so.4.13 /usr/lib64/libxenctrl.so.4.13.0 /usr/lib64/libxendevicemodel.so.1 /usr/lib64/libxendevicemodel.so.1.3 /usr/lib64/libxenevtchn.so.1 /usr/lib64/libxenevtchn.so.1.1 /usr/lib64/libxenforeignmemory.so.1 /usr/lib64/libxenforeignmemory.so.1.3 /usr/lib64/libxenfsimage.so.4.13 /usr/lib64/libxenfsimage.so.4.13.0 /usr/lib64/libxengnttab.so.1 /usr/lib64/libxengnttab.so.1.2 /usr/lib64/libxenguest.so.4.13 /usr/lib64/libxenguest.so.4.13.0 /usr/lib64/libxenlight.so.4.13 /usr/lib64/libxenlight.so.4.13.0 /usr/lib64/libxenstat.so.4.13 /usr/lib64/libxenstat.so.4.13.0 /usr/lib64/libxenstore.so.3.0 /usr/lib64/libxenstore.so.3.0.3 /usr/lib64/libxentoolcore.so.1 /usr/lib64/libxentoolcore.so.1.0 /usr/lib64/libxentoollog.so.1 /usr/lib64/libxentoollog.so.1.0 /usr/lib64/libxenvchan.so.4.13 /usr/lib64/libxenvchan.so.4.13.0 /usr/lib64/libxlutil.so.4.13 /usr/lib64/libxlutil.so.4.13.0 /usr/lib64/xenfsimage /usr/lib64/xenfsimage/ext2fs-lib /usr/lib64/xenfsimage/ext2fs-lib/fsimage.so /usr/lib64/xenfsimage/fat /usr/lib64/xenfsimage/fat/fsimage.so /usr/lib64/xenfsimage/iso9660 /usr/lib64/xenfsimage/iso9660/fsimage.so /usr/lib64/xenfsimage/reiserfs /usr/lib64/xenfsimage/reiserfs/fsimage.so /usr/lib64/xenfsimage/ufs /usr/lib64/xenfsimage/ufs/fsimage.so /usr/lib64/xenfsimage/xfs /usr/lib64/xenfsimage/xfs/fsimage.so /usr/lib64/xenfsimage/zfs /usr/lib64/xenfsimage/zfs/fsimage.so
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon May 9 14:25:43 2022