[xen/f17] update to xen-4.1.5 (includes security fixes), allow xendomains to work better with xl
myoung
myoung at fedoraproject.org
Thu Apr 25 19:47:28 UTC 2013
commit d115c5c9d22c8a7abbfd94debea550389f682b47
Author: Michael Young <m.a.young at durham.ac.uk>
Date: Thu Apr 25 20:45:21 2013 +0100
update to xen-4.1.5 (includes security fixes), allow xendomains to work
better with xl
.gitignore | 2 +-
gcc48.build.patch | 55 -------
libexec.xendomains | 2 +-
sources | 2 +-
xen.spec | 31 ++--
xsa27.fix.patch | 33 ----
xsa33-4.1.patch | 21 ---
xsa36-4.1.patch | 424 ----------------------------------------------------
xsa38.patch | 73 ---------
xsa41-4.1.patch | 137 -----------------
xsa47-4.1.patch | 31 ----
11 files changed, 17 insertions(+), 794 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index 9111335..226d614 100644
--- a/.gitignore
+++ b/.gitignore
@@ -6,4 +6,4 @@ lwip-1.3.0.tar.gz
pciutils-2.2.9.tar.bz2
zlib-1.2.3.tar.gz
/ipxe-git-v1.0.0.tar.gz
-/xen-4.1.4.tar.gz
+/xen-4.1.5.tar.gz
diff --git a/libexec.xendomains b/libexec.xendomains
index d908948..747897b 100755
--- a/libexec.xendomains
+++ b/libexec.xendomains
@@ -238,7 +238,7 @@ start()
for dom in $XENDOMAINS_SAVE/*; do
if [ -f $dom ] ; then
HEADER=`head -c 16 $dom | head -n 1 2> /dev/null`
- if [ $HEADER = "LinuxGuestRecord" ]; then
+ if [ "$HEADER" = "LinuxGuestRecord" -o "$HEADER" = "Xen saved domain" ]; then
echo -n " ${dom##*/}"
XMR=`$CMD restore $dom 2>&1 1>/dev/null`
#$CMD restore $dom
diff --git a/sources b/sources
index bedba99..31eeb2b 100644
--- a/sources
+++ b/sources
@@ -4,4 +4,4 @@ bf8f1f9e3ca83d732c00a79a6ef29bc4 newlib-1.16.0.tar.gz
cec05e7785497c5e19da2f114b934ffd pciutils-2.2.9.tar.bz2
debc62758716a169df9f62e6ab2bc634 zlib-1.2.3.tar.gz
fb7df96781d337899066d82059346885 ipxe-git-v1.0.0.tar.gz
-f71e0ffd2c31a855c28935f642ae94f8 xen-4.1.4.tar.gz
+8cde86e144f997980e259cba238e6fcd xen-4.1.5.tar.gz
diff --git a/xen.spec b/xen.spec
index 032995f..d437226 100644
--- a/xen.spec
+++ b/xen.spec
@@ -19,8 +19,8 @@
Summary: Xen is a virtual machine monitor
Name: xen
-Version: 4.1.4
-Release: 7%{?dist}
+Version: 4.1.5
+Release: 1%{?dist}
Group: Development/Libraries
License: GPLv2+ and LGPLv2+ and BSD
URL: http://xen.org/
@@ -72,13 +72,6 @@ Patch52: upstream-23938:fa04fbd56521-rework
Patch53: upstream-23939:51288f69523f-rework
Patch54: upstream-23940:187d59e32a58
-Patch55: xsa33-4.1.patch
-Patch56: xsa41-4.1.patch
-Patch57: xsa27.fix.patch
-Patch58: xsa36-4.1.patch
-Patch59: xsa38.patch
-Patch60: gcc48.build.patch
-Patch61: xsa47-4.1.patch
Patch100: xen-configure-xend.patch
@@ -236,13 +229,6 @@ manage Xen virtual machines.
%patch53 -p1
%patch54 -p1
-%patch55 -p1
-%patch56 -p1
-%patch57 -p1
-%patch58 -p1
-%patch59 -p1
-%patch60 -p1
-%patch61 -p1
%patch100 -p1
@@ -701,12 +687,23 @@ rm -rf %{buildroot}
%endif
%changelog
+* Thu Apr 25 2013 Michael Young <m.a.young at durham.ac.uk> - 4.1.5-1
+- update to xen-4.1.5
+ includes fixes for
+ passed through IRQs or PCI devices might allow denial of service attack
+ [XSA-46, CVE-2013-1919] (#953568)
+ SYSENTER in 32-bit PV guests on 64-bit xen can crash hypervisor
+ [XSA-44, CVE-2013-1917] (#953569)
+ grant releases can release more than intended potentially crashing xen
+ [XSA-50, CVE-2013-1964] (#953632)
+- remove patches that are included in 4.1.5
+- allow xendomains to work with xl saved images
+
* Thu Apr 04 2013 Michael Young <m.a.young at durham.ac.uk> - 4.1.4-7
- make xendomains systemd script executable (#919705)
- Potential use of freed memory in event channel operations [XSA-47,
CVE-2013-1920]
-
* Fri Feb 22 2013 Michael Young <m.a.young at durham.ac.uk> - 4.1.4-6
- patch for [XSA-36, CVE-2013-0153] can cause boot time crash
- backport the fixes discovered when building with gcc 4.8
More information about the scm-commits
mailing list