Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

xen-libs-4.14.3-2.fc33 RPM for x86_64

From Fedora 33 updates for x86_64 / Packages / x

Name: xen-libs Distribution: Fedora Project
Version: 4.14.3 Vendor: Fedora Project
Release: 2.fc33 Build date: Wed Oct 6 22:01:12 2021
Group: Unspecified Build host: buildvm-x86-06.iad2.fedoraproject.org
Size: 1886395 Source RPM: xen-4.14.3-2.fc33.src.rpm
Packager: Fedora Project
Url: http://xen.org/
Summary: Libraries for Xen tools
This package contains the libraries needed to run applications
which manage Xen virtual machines.

Provides

Requires

License

GPLv2+ and LGPLv2+ and BSD

Changelog

* Wed Oct 06 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.3-2
  - PCI devices with RMRRs not deassigned correctly [XSA-386, CVE-2021-28702]
  	(#2011248)
* Mon Sep 13 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.3-1
  - update to xen-4.14.3
    remove or adjust patches now included or superceded upstream
* Wed Sep 08 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.2-4
  - Another race in XENMAPSPACE_grant_table handling [XSA-384, CVE-2021-28701]
  	(#2002786)
  - bugfix for XSA-380
  - stop editing grub files in /boot/efi/EFI/fedora on Fedora 34
* Sat Aug 28 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.2-3
  - IOMMU page mapping issues on x86 [XSA-378, CVE-2021-28694,
  	CVE-2021-28695, CVE-2021-28696] (#1997531) (#1997568)
  	(#1997537)
  - grant table v2 status pages may remain accessible after de-allocation
  	[XSA-379, CVE-2021-28697] (#1997520)
  - long running loops in grant table handling [XSA-380, CVE-2021-28698]
  	(#1997526)
  - inadequate grant-v2 status frames array bounds check [XSA-382,
  	CVE-2021-28699] (#1997523)
  - xen/arm: No memory limit for dom0less domUs [XSA-383, CVE-2021-28700]
  	(#1997527)
  - grub x86_64-efi modules now go into /boot/grub2
* Tue Jun 08 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.2-2
  - xen/arm: Boot modules are not scrubbed [XSA-372, CVE-2021-28693]
    (#1970542)
  - inappropriate x86 IOMMU timeout detection / handling
  	[XSA-373, CVE-2021-28692] (#1970540)
  - Speculative Code Store Bypass [XSA-375, CVE-2021-0089, CVE-2021-26313]
  	(#1970531)
  - x86: TSX Async Abort protections not restored after S3
  	[XSA-377, CVE-2021-28690] (#1970546)
* Tue May 04 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.2-1
  - update to 4.14.2
    remove or adjust patch content now included or superceded upstream
  - re-copy grub modules if they have changed
* Thu Mar 18 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.1-7
  - HVM soft-reset crashes toolstack [XSA-368, CVE-2021-28687] (#1940610)
* Tue Feb 16 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.1-5
  - Linux: display frontend "be-alloc" mode is unsupported (comment only)
  	[XSA-363, CVE-2021-26934] (#1929549)
  - arm: The cache may not be cleaned for newly allocated scrubbed pages
  	[XSA-364, CVE-2021-26933] (#1929547)
* Mon Feb 01 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.1-4
  - backport upstream zstd dom0 and guest patches
  - add libzstd-devel BuildRequires
  - add weak dependency on grub modules to improve initial boot setup
* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> - 4.14.1-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Thu Jan 21 2021 Michael Young <m.a.young@durham.ac.uk> - 4.14.1-2
  - IRQ vector leak on x86 [XSA-360]
* Sun Dec 20 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.1-1
  - update to 4.14.1
    adjust xen.canonicalize.patch
    remove or adjust patches now included or superceded upstream
    renumber patches
* Tue Dec 15 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-14
  - xenstore watch notifications lacking permission checks [XSA-115,
  	CVE-2020-29480] (#1908091)
  - Xenstore: new domains inheriting existing node permissions [XSA-322,
  	CVE-2020-29481] (#1908095)
  - Xenstore: wrong path length check [XSA-323, CVE-2020-29482] (#1908096)
  - Xenstore: guests can crash xenstored via watchs [XSA-324, CVE-2020-29484]
  	(#1908088)
  - Xenstore: guests can disturb domain cleanup [XSA-325, CVE-2020-29483]
  	(#1908087)
  - oxenstored memory leak in reset_watches [XSA-330, CVE-2020-29485]
  	(#1908000)
  - undue recursion in x86 HVM context switch code [XSA-348, CVE-2020-29566]
  	(#1908085)
  - oxenstored: node ownership can be changed by unprivileged clients
  	[XSA-352, CVE-2020-29486] (#1908003)
  - oxenstored: permissions not checked on root node [XSA-353, CVE-2020-29479]
  	(#1908002)
  - infinite loop when cleaning up IRQ vectors [XSA-356, CVE-2020-29567]
  	(#1907932)
  - FIFO event channels control block related ordering [XSA-358,
  	CVE-2020-29570] (#1907931)
  - FIFO event channels control structure ordering [XSA-359, CVE-2020-29571]
  	(#1908089)
* Sat Dec 05 2020 Jeff Law <law@redhat.com> - 4.14.0-13
  - Work around another gcc-11 stringop-overflow diagnostic
* Tue Nov 24 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-12
  - stack corruption from XSA-346 change [XSA-355]
* Mon Nov 23 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-11
  - support zstd compressed kernels (dom0 only) based on linux kernel code
* Tue Nov 10 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-10
  - Information leak via power sidechannel [XSA-351, CVE-2020-28368]
  	(#1897146)
  - add make as build requires
* Tue Nov 03 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-9
  - revised patch for XSA-286 (mitigating performance impact)
* Fri Oct 30 2020 Jeff Law <law@redhat.com> - 4.14.0-8
  - Work around gcc-11 stringop-overflow diagnostics as well
* Wed Oct 28 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-7
  - x86 PV guest INVLPG-like flushes may leave stale TLB entries
  	[XSA-286, CVE-2020-27674] (#1891092)
  - simplify grub scripts (patches from Thierry Vignaud <tvignaud@redhat.com>)
  - some fixes for gcc 11
* Tue Oct 20 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-6
  - x86: Race condition in Xen mapping code [XSA-345, CVE-2020-27672]
  	(#1891097)
  - undue deferral of IOMMU TLB flushes [XSA-346, CVE-2020-27671]
  	(#1891093)
  - unsafe AMD IOMMU page table updates [XSA-347, CVE-2020-27670]
  	(#1891088)
* Tue Sep 22 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-5
  - x86 pv: Crash when handling guest access to MSR_MISC_ENABLE [XSA-333,
  	CVE-2020-25602] (#1881619)
  - Missing unlock in XENMEM_acquire_resource error path [XSA-334,
  	CVE-2020-25598] (#1881616)
  - race when migrating timers between x86 HVM vCPU-s [XSA-336,
  	CVE-2020-25604] (#1881618)
  - PCI passthrough code reading back hardware registers [XSA-337,
  	CVE-2020-25595] (#1881587)
  - once valid event channels may not turn invalid [XSA-338, CVE-2020-25597]
  	(#1881588)
  - x86 pv guest kernel DoS via SYSENTER [XSA-339, CVE-2020-25596]
  	(#1881617)
  - Missing memory barriers when accessing/allocating an event channel [XSA-340,
  	CVE-2020-25603] (#1881583)
  - out of bounds event channels available to 32-bit x86 domains [XSA-342,
  	CVE-2020-25600] (#1881582)
  - races with evtchn_reset() [XSA-343, CVE-2020-25599] (#1881581)
  - lack of preemption in evtchn_reset() / evtchn_destroy() [XSA-344,
  	CVE-2020-25601] (#1881586)
* Thu Sep 03 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-4
  - rebuild for OCaml 4.11.1
* Mon Aug 24 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-3
  - QEMU: usb: out-of-bounds r/w access issue [XSA-335, CVE-2020-14364]
  	(#1871850)
* Wed Jul 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 4.14.0-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Sun Jul 26 2020 Michael Young <m.a.young@durham.ac.uk> - 4.14.0-1
  - update to 4.14.0
    remove or adjust patches now included or superceded upstream
    adjust xen.hypervisor.config
    bison and flex packages now needed for hypervisor build
    /usr/bin/vchan-socket-proxy and /usr/sbin/xenhypfs have been added
  	with associated libraries and man page
  - re-enable pandoc for more documentation
    adding xen-vbd-interface.7.gz
  - revise documentation build dependencies
    drop tex, texinfo, ghostscript, graphviz, discount
    add perl(Pod::Html) perl(File::Find)
  - additional build dependency for ocaml on perl(Data::Dumper)
* Tue Jul 14 2020 Tom Stellard <tstellar@redhat.com> - 4.13.1-5
  - Use make macros
  - https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
* Tue Jul 07 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-4
  - incorrect error handling in event channel port allocation leads to
  	DoS [XSA-317, CVE-2020-15566] (#1854465)
  - inverted code paths in x86 dirty VRAM tracking leads to DoS
  	[XSA-319, CVE-2020-15563] (#1854463)
  - xen: insufficient cache write-back under VT-d leads to DoS
  	[XSA-321, CVE-2020-15565] (#1854467)
  - missing alignment check in VCPUOP_register_vcpu_info leads to DoS
  	[XSA-327, CVE-2020-15564] (#1854458)
  - non-atomic modification of live EPT PTE leads to DoS
  	[XSA-328, CVE-2020-15567] (#1854464)
* Tue Jun 30 2020 Jeff Law <law@redhat.com>
  Disable LTO
* Wed Jun 10 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-3
  - Special Register Buffer speculative side channel [XSA-320]
* Tue May 26 2020 Miro HronĨok <mhroncok@redhat.com> - 4.13.1-2
  - Rebuilt for Python 3.9
* Tue May 19 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.1-1
  - update to 4.13.1
    remove patches now included or superceded upstream
* Tue May 05 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-8
  - build aarch64 hypervisor with -mno-outline-atomics to fix gcc 10 build
* Tue Apr 14 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-7
  - multiple xenoprof issues [XSA-313, CVE-2020-11740, CVE-2020-11741]
  	(#1823912, #1823914)
  - Missing memory barriers in read-write unlock paths [XSA-314,
  	CVE-2020-11739] (#1823784)
  - Bad error path in GNTTABOP_map_grant [XSA-316, CVE-2020-11743] (#1823926)
  - Bad continuation handling in GNTTABOP_copy [XSA-318, CVE-2020-11742]
  	(#1823943)
* Tue Mar 17 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-6
  - fix issues in pygrub dependency found by python 3.8
* Tue Mar 10 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-5
  - setting for --with-system-ipxe should be a rom file (#1778516)
  - add weak depends on ipxe-roms-qemu and qemu-system-x86-core
* Fri Jan 31 2020 Fedora Release Engineering <releng@fedoraproject.org> - 4.13.0-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Wed Jan 22 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-3
  - build fixes for OCaml 4.10.0 and gcc 10
* Tue Jan 14 2020 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-2
  - arm: a CPU may speculate past the ERET instruction [XSA-312]
  - use more explicit library names
  - add weak requires for perl (/etc/xen/scripts/locking.sh)
* Wed Dec 18 2019 Michael Young <m.a.young@durham.ac.uk> - 4.13.0-1
  - update to 4.13.0
    remove patches now included or superceded upstream
    adjust xen.hypervisor.config
    /usr/sbin/xen-tmem-list-parse has been removed
    pkgconfig files have moved to %{_libdir}/pkgconfig
    /usr/sbin/xen-ucode has been added (x86 only)
* Sun Dec 15 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-9
  - fix build with OCaml 4.09.0
* Wed Dec 11 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-8
  - denial of service in find_next_bit() [XSA-307, CVE-2019-19581,
  	CVE-2019-19582] (#1782211)
  - denial of service in HVM/PVH guest userspace code [XSA-308,
  	CVE-2019-19583] (#1782206)
  - privilege escalation due to malicious PV guest [XSA-309, CVE-2019-19578]
  	(#1782210)
  - Further issues with restartable PV type change operations [XSA-310,
  	CVE-2019-19580] (#1782207)
  - vulnerability in dynamic height handling for AMD IOMMU pagetables
  	[XSA-311, CVE-2019-19577] (#1782208)
  - add patches needed to apply XSA-311
* Tue Nov 26 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-7
  - Device quarantine for alternate pci assignment methods [XSA-306,
  	CVE-2019-19579] (#1780559)
* Tue Nov 12 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-6
  - add missing XSA-299 patches
* Tue Nov 12 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-5
  - x86: Machine Check Error on Page Size Change DoS [XSA-304, CVE-2018-12207]
  - TSX Asynchronous Abort speculative side channel [XSA-305, CVE-2019-11135]
* Thu Oct 31 2019 Michael Young <m.a.young@durham.ac.uk> - 4.12.1-4
  - VCPUOP_initialise DoS [XSA-296, CVE-2019-18420] (#1771368)
  - missing descriptor table limit checking in x86 PV emulation [XSA-298,
  	CVE-2019-18425] (#1771341)
  - Issues with restartable PV type change operations [XSA-299, CVE-2019-18421]
  	(#1767726)
  - add-to-physmap can be abused to DoS Arm hosts [XSA-301, CVE-2019-18423]
  	(#1771345)
  - passed through PCI devices may corrupt host memory after deassignment
  	[XSA-302, CVE-2019-18424] (#1767731)
  - ARM: Interrupts are unconditionally unmasked in exception handlers
  	[XSA-303, CVE-2019-18422] (#1771443)

Files

/usr/lib/.build-id
/usr/lib/.build-id/14
/usr/lib/.build-id/14/edaa9beb27640703705e7d3c74ad37d4457572
/usr/lib/.build-id/1e
/usr/lib/.build-id/1e/4a62ff99378a42521d621a137f77b6a65698e7
/usr/lib/.build-id/24
/usr/lib/.build-id/24/6c4fe4fc39fcf757e7c8b411b2206fd97fc967
/usr/lib/.build-id/27
/usr/lib/.build-id/27/da39177b081f8ff90fce9e938b8ea84b140a49
/usr/lib/.build-id/2d
/usr/lib/.build-id/2d/7571d5d6776136b70cdd6a504faffc05df4998
/usr/lib/.build-id/44
/usr/lib/.build-id/44/4be6b451f7adec65fc4e92dc0c4b1643eef0a2
/usr/lib/.build-id/64
/usr/lib/.build-id/64/1ab960f5a54f6d74a20e129a19b4c2b84eae1a
/usr/lib/.build-id/6d
/usr/lib/.build-id/6d/128511e51b7f93c9c664dea1ca06551e616b26
/usr/lib/.build-id/75
/usr/lib/.build-id/75/8fb96f48beb57a6e9f3a3803131be72b6fccc6
/usr/lib/.build-id/75/987ae580e0d1963f9359a42f7db6d2ee1daf59
/usr/lib/.build-id/87
/usr/lib/.build-id/87/f21c7085e2bc7c6e6c4b9e731237067a876e0d
/usr/lib/.build-id/a5
/usr/lib/.build-id/a5/3146fa0e229c18e379dbb9cebab9a18e258078
/usr/lib/.build-id/a6
/usr/lib/.build-id/a6/89a4d419e05b77330f63ef42131957962ab8a4
/usr/lib/.build-id/a7
/usr/lib/.build-id/a7/77d38aebbbb68f7146e160b799133aff40c530
/usr/lib/.build-id/aa
/usr/lib/.build-id/aa/0150cdb59016cd36f2569d3b4f680be0fd6dcb
/usr/lib/.build-id/ad
/usr/lib/.build-id/ad/effcf07e83887d5a1de6e207b0a6e8983f0a7f
/usr/lib/.build-id/b3
/usr/lib/.build-id/b3/8695e9fe742a5ee3a1022a339c6c81ac684ca9
/usr/lib/.build-id/b6
/usr/lib/.build-id/b6/8c900fe38fcfa8a2abf284540f7c6469767dff
/usr/lib/.build-id/b8
/usr/lib/.build-id/b8/36bb2cf3fc66527265581da2de861f0e383c40
/usr/lib/.build-id/c3/da6232111cb39ddd1a8affbbded7e74efac72b
/usr/lib/.build-id/c9
/usr/lib/.build-id/c9/5c1be5d8ca4fee212b09d5ac241de821b5eac3
/usr/lib/.build-id/e1
/usr/lib/.build-id/e1/77f09088d051f6df4ece24c00579bcc20a535f
/usr/lib/.build-id/ee
/usr/lib/.build-id/ee/46a4c8d5f78b89a232cd4fc458140cae2e0512
/usr/lib64/libxencall.so.1
/usr/lib64/libxencall.so.1.2
/usr/lib64/libxenctrl.so.4.14
/usr/lib64/libxenctrl.so.4.14.0
/usr/lib64/libxendevicemodel.so.1
/usr/lib64/libxendevicemodel.so.1.3
/usr/lib64/libxenevtchn.so.1
/usr/lib64/libxenevtchn.so.1.1
/usr/lib64/libxenforeignmemory.so.1
/usr/lib64/libxenforeignmemory.so.1.3
/usr/lib64/libxenfsimage.so.4.14
/usr/lib64/libxenfsimage.so.4.14.0
/usr/lib64/libxengnttab.so.1
/usr/lib64/libxengnttab.so.1.2
/usr/lib64/libxenguest.so.4.14
/usr/lib64/libxenguest.so.4.14.0
/usr/lib64/libxenhypfs.so.1
/usr/lib64/libxenhypfs.so.1.0
/usr/lib64/libxenlight.so.4.14
/usr/lib64/libxenlight.so.4.14.0
/usr/lib64/libxenstat.so.4.14
/usr/lib64/libxenstat.so.4.14.0
/usr/lib64/libxenstore.so.3.0
/usr/lib64/libxenstore.so.3.0.3
/usr/lib64/libxentoolcore.so.1
/usr/lib64/libxentoolcore.so.1.0
/usr/lib64/libxentoollog.so.1
/usr/lib64/libxentoollog.so.1.0
/usr/lib64/libxenvchan.so.4.14
/usr/lib64/libxenvchan.so.4.14.0
/usr/lib64/libxlutil.so.4.14
/usr/lib64/libxlutil.so.4.14.0
/usr/lib64/xenfsimage
/usr/lib64/xenfsimage/ext2fs-lib
/usr/lib64/xenfsimage/ext2fs-lib/fsimage.so
/usr/lib64/xenfsimage/fat
/usr/lib64/xenfsimage/fat/fsimage.so
/usr/lib64/xenfsimage/iso9660
/usr/lib64/xenfsimage/iso9660/fsimage.so
/usr/lib64/xenfsimage/reiserfs
/usr/lib64/xenfsimage/reiserfs/fsimage.so
/usr/lib64/xenfsimage/ufs
/usr/lib64/xenfsimage/ufs/fsimage.so
/usr/lib64/xenfsimage/xfs
/usr/lib64/xenfsimage/xfs/fsimage.so
/usr/lib64/xenfsimage/zfs
/usr/lib64/xenfsimage/zfs/fsimage.so


Generated by rpm2html 1.8.1

Fabrice Bellet, Mon May 9 16:52:38 2022