CVS commit: pkgsrc/sysutils

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/sysutils
From: "Patrick Welche" <prlw1%netbsd.org@localhost>
Date: Thu, 12 Sep 2013 23:37:18 +0000

Module Name:    pkgsrc
Committed By:   prlw1
Date:           Thu Sep 12 23:37:18 UTC 2013

Modified Files:
        pkgsrc/sysutils/xenkernel42: Makefile distinfo
        pkgsrc/sysutils/xentools42: Makefile distinfo
        pkgsrc/sysutils/xentools42/files: xencommons.sh
Removed Files:
        pkgsrc/sysutils/xenkernel42/patches: patch-xen_arch_x86_time.c
            patch-xen_common_libelf_libelf-private.h
        pkgsrc/sysutils/xentools42: version.mk

Log Message:
Update xen to 4.2.3

- Add warning if /kern/xen/privcmd is not readable

Fixes the following critical vulnerabilities:
 * CVE-2013-1918 / XSA-45:
    Several long latency operations are not preemptible
 * CVE-2013-1952 / XSA-49:
    VT-d interrupt remapping source validation flaw for bridges
 * CVE-2013-2076 / XSA-52:
    Information leak on XSAVE/XRSTOR capable AMD CPUs
 * CVE-2013-2077 / XSA-53:
    Hypervisor crash due to missing exception recovery on XRSTOR
 * CVE-2013-2078 / XSA-54:
    Hypervisor crash due to missing exception recovery on XSETBV
 * CVE-2013-2194, CVE-2013-2195, CVE-2013-2196 / XSA-55:
    Multiple vulnerabilities in libelf PV kernel handling
 * CVE-2013-2072 / XSA-56:
    Buffer overflow in xencontrol Python bindings affecting xend
 * CVE-2013-2211 / XSA-57:
    libxl allows guest write access to sensitive console related xenstore keys
 * CVE-2013-1432 / XSA-58:
    Page reference counting error due to XSA-45/CVE-2013-1918 fixes
 * XSA-61:
    libxl partially sets up HVM passthrough even with disabled iommu

The following minor vulnerability is also being addressed:
 * CVE-2013-2007 / XSA-51
    qemu guest agent (qga) insecure file permissions

Among many bug fixes and improvements:
 * addressing a regression from the fix for XSA-46
 * bug fixes to low level system state handling, including certain
    hardware errata workarounds


To generate a diff of this commit:
cvs rdiff -u -r1.2 -r1.3 pkgsrc/sysutils/xenkernel42/Makefile
cvs rdiff -u -r1.3 -r1.4 pkgsrc/sysutils/xenkernel42/distinfo
cvs rdiff -u -r1.1 -r0 \
    pkgsrc/sysutils/xenkernel42/patches/patch-xen_arch_x86_time.c \
    pkgsrc/sysutils/xenkernel42/patches/patch-xen_common_libelf_libelf-private.h
cvs rdiff -u -r1.7 -r1.8 pkgsrc/sysutils/xentools42/Makefile
cvs rdiff -u -r1.6 -r1.7 pkgsrc/sysutils/xentools42/distinfo
cvs rdiff -u -r1.1 -r0 pkgsrc/sysutils/xentools42/version.mk
cvs rdiff -u -r1.2 -r1.3 pkgsrc/sysutils/xentools42/files/xencommons.sh

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/games/gbrainy
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/games/gbrainy
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index