![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / sysutils / xentools42
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.78, Wed Aug 19 10:39:24 2020 UTC (2 years, 7 months ago) by bouyer
Branch: MAIN
CVS Tags: HEAD
Changes since 1.77: +1 -1
lines
FILE REMOVED
Remove xenkernel and xentools packages older than 4.11. They're not maintained anymore upstream, and don't build on supported NetBSD releases.
Revision 1.77 / (download) - annotate - [select for diffs], Tue May 19 19:24:41 2020 UTC (2 years, 10 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2020Q2-base,
pkgsrc-2020Q2
Changes since 1.76: +1 -2
lines
Diff to previous 1.76 (colored)
sysutils/xentools42: remove no-op file from SUBST_FILES
Revision 1.76 / (download) - annotate - [select for diffs], Sun Mar 8 16:51:25 2020 UTC (3 years ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2020Q1-base,
pkgsrc-2020Q1
Changes since 1.75: +2 -2
lines
Diff to previous 1.75 (colored)
*: recursive bump for libffi
Revision 1.75 / (download) - annotate - [select for diffs], Mon Nov 4 21:28:58 2019 UTC (3 years, 4 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2019Q4-base,
pkgsrc-2019Q4
Changes since 1.74: +5 -5
lines
Diff to previous 1.74 (colored)
sysutils: align variable assignments pkglint -Wall -F --only aligned --only indent -r Manually excluded consolekit and dc-tools since pkglint didn't get the formatting correct.
Revision 1.74 / (download) - annotate - [select for diffs], Sun Aug 11 13:23:18 2019 UTC (3 years, 7 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2019Q3-base,
pkgsrc-2019Q3
Changes since 1.73: +2 -2
lines
Diff to previous 1.73 (colored)
Bump PKGREVISIONs for perl 5.30.0
Revision 1.73 / (download) - annotate - [select for diffs], Thu Apr 25 07:33:22 2019 UTC (3 years, 10 months ago) by maya
Branch: MAIN
CVS Tags: pkgsrc-2019Q2-base,
pkgsrc-2019Q2
Changes since 1.72: +2 -2
lines
Diff to previous 1.72 (colored)
PKGREVISION bump for anything using python without a PYPKGPREFIX. This is a semi-manual PKGREVISION bump.
Revision 1.72 / (download) - annotate - [select for diffs], Mon Nov 12 16:10:26 2018 UTC (4 years, 4 months ago) by jaapb
Branch: MAIN
CVS Tags: pkgsrc-2019Q1-base,
pkgsrc-2019Q1,
pkgsrc-2018Q4-base,
pkgsrc-2018Q4
Changes since 1.71: +2 -2
lines
Diff to previous 1.71 (colored)
Revbumps associated with update of lang/ocaml.
Revision 1.71 / (download) - annotate - [select for diffs], Sat Sep 29 16:52:35 2018 UTC (4 years, 5 months ago) by tnn
Branch: MAIN
CVS Tags: pkgsrc-2018Q3-base,
pkgsrc-2018Q3
Changes since 1.70: +3 -1
lines
Diff to previous 1.70 (colored)
xentools42: drop -Werror. Still doesn't build due to some ocaml error. probably xen42 should just be deleted from pkgsrc ...
Revision 1.70 / (download) - annotate - [select for diffs], Wed Aug 22 09:46:41 2018 UTC (4 years, 7 months ago) by wiz
Branch: MAIN
Changes since 1.69: +2 -2
lines
Diff to previous 1.69 (colored)
Recursive bump for perl5-5.28.0
Revision 1.69 / (download) - annotate - [select for diffs], Tue Jul 24 17:29:09 2018 UTC (4 years, 7 months ago) by maya
Branch: MAIN
Changes since 1.68: +2 -2
lines
Diff to previous 1.68 (colored)
sysutils/xen*: invert python version logic, only 2.7 is ok. Mostly so we don't match python37 on xen 4.11, but also because python3 is a moving target and this saves us having to add the next version.
Revision 1.68 / (download) - annotate - [select for diffs], Thu Jul 19 15:15:28 2018 UTC (4 years, 8 months ago) by jaapb
Branch: MAIN
Changes since 1.67: +2 -2
lines
Diff to previous 1.67 (colored)
Recursive revbump associated with the update of lang/ocaml to 4.07.
Revision 1.67 / (download) - annotate - [select for diffs], Tue Jul 3 05:03:35 2018 UTC (4 years, 8 months ago) by adam
Branch: MAIN
Changes since 1.66: +2 -2
lines
Diff to previous 1.66 (colored)
extend PYTHON_VERSIONS_ for Python 3.7
Revision 1.66 / (download) - annotate - [select for diffs], Wed Jun 27 10:44:15 2018 UTC (4 years, 8 months ago) by maya
Branch: MAIN
CVS Tags: pkgsrc-2018Q2-base,
pkgsrc-2018Q2
Changes since 1.65: +3 -3
lines
Diff to previous 1.65 (colored)
xentools*: Force (older) pkgsrc acpica-utils. This package doesn't build with newer acpica-utils. PR pkg/53403 PR pkg/53404
Revision 1.65 / (download) - annotate - [select for diffs], Fri Apr 13 13:55:37 2018 UTC (4 years, 11 months ago) by jaapb
Branch: MAIN
Changes since 1.64: +2 -2
lines
Diff to previous 1.64 (colored)
Revbump associated with the upgrade of lang/ocaml (this is the upgrade from 4.06 to 4.06.1)
Revision 1.64 / (download) - annotate - [select for diffs], Mon Jan 15 09:47:54 2018 UTC (5 years, 2 months ago) by jperkin
Branch: MAIN
CVS Tags: pkgsrc-2018Q1-base,
pkgsrc-2018Q1
Changes since 1.63: +2 -2
lines
Diff to previous 1.63 (colored)
xen*: Use SSP_SUPPORTED=no instead of PKGSRC_USE_SSP=no.
Revision 1.63 / (download) - annotate - [select for diffs], Wed Jan 10 16:53:13 2018 UTC (5 years, 2 months ago) by jaapb
Branch: MAIN
Changes since 1.62: +2 -2
lines
Diff to previous 1.62 (colored)
Recursive revbump associated with the update to OCaml 4.06.
Revision 1.62 / (download) - annotate - [select for diffs], Sat Oct 28 01:46:11 2017 UTC (5 years, 4 months ago) by khorben
Branch: MAIN
CVS Tags: pkgsrc-2017Q4-base,
pkgsrc-2017Q4
Changes since 1.61: +2 -1
lines
Diff to previous 1.61 (colored)
Add support for LDFLAGS when building xentools{42,45,46,48}
This helps pass the RELRO check for these packages.
Revision 1.61 / (download) - annotate - [select for diffs], Fri Sep 8 09:51:25 2017 UTC (5 years, 6 months ago) by jaapb
Branch: MAIN
CVS Tags: pkgsrc-2017Q3-base,
pkgsrc-2017Q3
Changes since 1.60: +2 -2
lines
Diff to previous 1.60 (colored)
Recursive revbump associated with update of ocaml to 4.05
Revision 1.60 / (download) - annotate - [select for diffs], Wed Aug 23 02:57:09 2017 UTC (5 years, 6 months ago) by maya
Branch: MAIN
Changes since 1.59: +2 -2
lines
Diff to previous 1.59 (colored)
Blindly make the same change as xentools45, handle ocaml-findlib appending destdir. Blind because this package doesn't build due to -Werror and warnings bump PKGREVISION in case ocaml updates affected things.
Revision 1.59 / (download) - annotate - [select for diffs], Mon Jul 24 11:37:49 2017 UTC (5 years, 7 months ago) by maya
Branch: MAIN
Changes since 1.58: +4 -4
lines
Diff to previous 1.58 (colored)
xentools{42,45,46,48}: don't force SSP. fixes build.
xentools42: avoid %m in printf, use strerror instead. bump PKGREVISION.
I still can't build it due to other new warnings (it uses -Werror)
Revision 1.58 / (download) - annotate - [select for diffs], Tue Jul 11 14:19:21 2017 UTC (5 years, 8 months ago) by jaapb
Branch: MAIN
Changes since 1.57: +2 -2
lines
Diff to previous 1.57 (colored)
Revbump associated with ocaml-4.04.2
Revision 1.57 / (download) - annotate - [select for diffs], Thu Apr 13 13:08:34 2017 UTC (5 years, 11 months ago) by bouyer
Branch: MAIN
CVS Tags: pkgsrc-2017Q2-base,
pkgsrc-2017Q2
Changes since 1.56: +2 -2
lines
Diff to previous 1.56 (colored)
Change http://bits.xensource.com/oss-xen/release/ to https://downloads.xenproject.org/release/xen/, as new releases won't be uploaded to bits.xensource.com
Revision 1.56 / (download) - annotate - [select for diffs], Tue Feb 14 21:36:15 2017 UTC (6 years, 1 month ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2017Q1-base,
pkgsrc-2017Q1
Changes since 1.55: +3 -2
lines
Diff to previous 1.55 (colored)
Ignore a couple more warnings when building with clang.
Revision 1.55 / (download) - annotate - [select for diffs], Tue Jan 3 19:00:56 2017 UTC (6 years, 2 months ago) by roy
Branch: MAIN
Changes since 1.54: +2 -2
lines
Diff to previous 1.54 (colored)
Move to the curses framework.
Revision 1.54 / (download) - annotate - [select for diffs], Sun Jan 1 14:43:59 2017 UTC (6 years, 2 months ago) by wiz
Branch: MAIN
Changes since 1.53: +2 -2
lines
Diff to previous 1.53 (colored)
Add python-3.6 to incompatible versions.
Revision 1.53 / (download) - annotate - [select for diffs], Fri Dec 30 11:17:01 2016 UTC (6 years, 2 months ago) by jaapb
Branch: MAIN
Changes since 1.52: +2 -2
lines
Diff to previous 1.52 (colored)
Recursive revbump associated with ocaml update to 4.04.
Revision 1.52 / (download) - annotate - [select for diffs], Tue Dec 20 10:22:29 2016 UTC (6 years, 3 months ago) by bouyer
Branch: MAIN
CVS Tags: pkgsrc-2016Q4-base,
pkgsrc-2016Q4
Changes since 1.51: +2 -2
lines
Diff to previous 1.51 (colored)
Apply upstream patch for XSA-199, XSA-200 and XSA-204. Bump PKGREVISIONs
Revision 1.51 / (download) - annotate - [select for diffs], Tue Nov 22 20:55:29 2016 UTC (6 years, 3 months ago) by bouyer
Branch: MAIN
Changes since 1.50: +2 -2
lines
Diff to previous 1.50 (colored)
Backport upstream patches, fixing today's XSA 191, 192, 195, 197, 198. Bump PKGREVISIONs
Revision 1.50 / (download) - annotate - [select for diffs], Sat Jul 9 13:04:08 2016 UTC (6 years, 8 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2016Q3-base,
pkgsrc-2016Q3
Changes since 1.49: +2 -2
lines
Diff to previous 1.49 (colored)
Remove python33: adapt all packages that refer to it.
Revision 1.49 / (download) - annotate - [select for diffs], Sat Jul 9 06:39:03 2016 UTC (6 years, 8 months ago) by wiz
Branch: MAIN
Changes since 1.48: +2 -2
lines
Diff to previous 1.48 (colored)
Bump PKGREVISION for perl-5.24.0 for everything mentioning perl.
Revision 1.48 / (download) - annotate - [select for diffs], Sun Jun 12 18:52:04 2016 UTC (6 years, 9 months ago) by abs
Branch: MAIN
CVS Tags: pkgsrc-2016Q2-base,
pkgsrc-2016Q2
Changes since 1.47: +8 -8
lines
Diff to previous 1.47 (colored)
Update pkgsrc pod2man usage for perl v5.24. No pkgrevision bump as no functional change if package built
Revision 1.47 / (download) - annotate - [select for diffs], Sat May 21 20:12:18 2016 UTC (6 years, 10 months ago) by bad
Branch: MAIN
Changes since 1.46: +2 -2
lines
Diff to previous 1.46 (colored)
Use "stat -L" to determine the physical device. Now one can use lvm's /dev/vgXXlvolYY symlinks in domU config files. PKGREVISION++
Revision 1.46 / (download) - annotate - [select for diffs], Thu May 5 11:45:41 2016 UTC (6 years, 10 months ago) by jaapb
Branch: MAIN
Changes since 1.45: +2 -2
lines
Diff to previous 1.45 (colored)
Recursive revbump associated with ocaml update.
Revision 1.45 / (download) - annotate - [select for diffs], Mon Apr 4 15:17:33 2016 UTC (6 years, 11 months ago) by bad
Branch: MAIN
CVS Tags: pkgsrc-2016Q1-base,
pkgsrc-2016Q1
Changes since 1.44: +2 -2
lines
Diff to previous 1.44 (colored)
Bump PKGREVISON for previous.
Revision 1.44 / (download) - annotate - [select for diffs], Mon Apr 4 15:13:15 2016 UTC (6 years, 11 months ago) by bad
Branch: MAIN
Changes since 1.43: +3 -2
lines
Diff to previous 1.43 (colored)
Guard the NetBSD block device hotplug script against concurrent execution. xl(1) runs the hotplug scripts in parallel. This causes failures when the next free vnd device is selected. Locking modeled after the Linux block hotplug script.
Revision 1.43 / (download) - annotate - [select for diffs], Mon Apr 4 15:03:14 2016 UTC (6 years, 11 months ago) by bad
Branch: MAIN
Changes since 1.42: +5 -2
lines
Diff to previous 1.42 (colored)
Honor PKG_SYSCONFDIR. While here drop know unnecessary XEN_CONFIG_DIR from MAKE_ENV.
Revision 1.42 / (download) - annotate - [select for diffs], Fri Feb 26 10:24:14 2016 UTC (7 years ago) by jperkin
Branch: MAIN
Changes since 1.41: +8 -9
lines
Diff to previous 1.41 (colored)
Use OPSYSVARS.
Revision 1.40.2.1 / (download) - annotate - [select for diffs], Mon Jan 11 20:37:17 2016 UTC (7 years, 2 months ago) by bsiegert
Branch: pkgsrc-2015Q4
Changes since 1.40: +2 -2
lines
Diff to previous 1.40 (colored) next main 1.41 (colored)
Pullup ticket #4886 - requested by bouyer sysutils/xenkernel42: security fix sysutils/xentools42: security fix Revisions pulled up: - sysutils/xenkernel42/Makefile 1.20 - sysutils/xenkernel42/distinfo 1.19 - sysutils/xenkernel42/patches/patch-CVE-2015-5307 1.1 - sysutils/xenkernel42/patches/patch-CVE-2015-8339 1.1 - sysutils/xenkernel42/patches/patch-CVE-2015-8555 1.1 - sysutils/xenkernel42/patches/patch-XSA-166 1.1 - sysutils/xentools42/Makefile 1.41 - sysutils/xentools42/distinfo 1.22 - sysutils/xentools42/patches/patch-CVE-2015-8550 1.1 - sysutils/xentools42/patches/patch-CVE-2015-8554 1.1 --- Module Name: pkgsrc Committed By: bouyer Date: Thu Jan 7 17:53:59 UTC 2016 Modified Files: pkgsrc/sysutils/xenkernel42: Makefile distinfo pkgsrc/sysutils/xentools42: Makefile distinfo Added Files: pkgsrc/sysutils/xenkernel42/patches: patch-CVE-2015-5307 patch-CVE-2015-8339 patch-CVE-2015-8555 patch-XSA-166 pkgsrc/sysutils/xentools42/patches: patch-CVE-2015-8550 patch-CVE-2015-8554 Log Message: pply patches from Xen repository, fixing: CVE-2015-5307 and CVE-2015-8104 aka XSA-156 CVE-2015-8339 and CVE-2015-8340 aka XSA-159 CVE-2015-8555 aka XSA-165 XSA-166 CVE-2015-8550 aka XSA-155 CVE-2015-8554 aka XSA-164 Bump pkgrevision
Revision 1.41 / (download) - annotate - [select for diffs], Thu Jan 7 17:53:58 2016 UTC (7 years, 2 months ago) by bouyer
Branch: MAIN
Changes since 1.40: +2 -2
lines
Diff to previous 1.40 (colored)
pply patches from Xen repository, fixing: CVE-2015-5307 and CVE-2015-8104 aka XSA-156 CVE-2015-8339 and CVE-2015-8340 aka XSA-159 CVE-2015-8555 aka XSA-165 XSA-166 CVE-2015-8550 aka XSA-155 CVE-2015-8554 aka XSA-164 Bump pkgrevision
Revision 1.40 / (download) - annotate - [select for diffs], Sat Dec 5 21:26:00 2015 UTC (7 years, 3 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2015Q4-base
Branch point for: pkgsrc-2015Q4
Changes since 1.39: +2 -2
lines
Diff to previous 1.39 (colored)
Extend PYTHON_VERSIONS_INCOMPATIBLE to 35
Revision 1.39 / (download) - annotate - [select for diffs], Thu Oct 22 05:05:22 2015 UTC (7 years, 5 months ago) by jnemeth
Branch: MAIN
Changes since 1.38: +2 -2
lines
Diff to previous 1.38 (colored)
Tweak test for SHM. Build fix, so no PKGREVISION bump.
Revision 1.38 / (download) - annotate - [select for diffs], Mon Oct 19 16:40:57 2015 UTC (7 years, 5 months ago) by joerg
Branch: MAIN
Changes since 1.37: +2 -2
lines
Diff to previous 1.37 (colored)
Bump revision for the libxl fix.
Revision 1.37 / (download) - annotate - [select for diffs], Mon Oct 19 16:40:41 2015 UTC (7 years, 5 months ago) by joerg
Branch: MAIN
Changes since 1.36: +2 -2
lines
Diff to previous 1.36 (colored)
Don't depend on the compiler to optimize ffsll away, explicitly use the builtin. Fix obvious logic error in libxl. Disable the use of global register variables for clang. Lesser evil, HVM users should use newer xentools or GCC.
Revision 1.36 / (download) - annotate - [select for diffs], Sat Oct 3 00:56:02 2015 UTC (7 years, 5 months ago) by jnemeth
Branch: MAIN
Changes since 1.35: +3 -2
lines
Diff to previous 1.35 (colored)
This failed to build during bulk builds due to /var/shm missing. Instead of looking for /var/shm, check to see if the version of NetBSD is new enough to have SHM.
Revision 1.35 / (download) - annotate - [select for diffs], Sun Aug 23 16:17:12 2015 UTC (7 years, 6 months ago) by spz
Branch: MAIN
CVS Tags: pkgsrc-2015Q3-base,
pkgsrc-2015Q3
Changes since 1.34: +2 -2
lines
Diff to previous 1.34 (colored)
Apply patches for XSA-128 to XSA-140 from upstream do a patch refresh in xentools42 rather than split the patches for pass-through.c over 5 files, delete xentools42/patches/patch-CVE-2015-2756 and assemble all in xentools42/patches/patch-qemu-xen-traditional_hw_pass-through.c
Revision 1.34 / (download) - annotate - [select for diffs], Tue Aug 18 07:31:18 2015 UTC (7 years, 7 months ago) by wiz
Branch: MAIN
Changes since 1.33: +2 -2
lines
Diff to previous 1.33 (colored)
Bump all packages that depend on curses.bui* or terminfo.bui* since they might incur ncurses dependencies on some platforms, and ncurses just bumped its shlib. Some packages were bumped twice now, sorry for that.
Revision 1.33 / (download) - annotate - [select for diffs], Mon Aug 17 17:11:30 2015 UTC (7 years, 7 months ago) by wiz
Branch: MAIN
Changes since 1.32: +2 -2
lines
Diff to previous 1.32 (colored)
Bump PKGREVISION for ncurses shlib bump.
Revision 1.32 / (download) - annotate - [select for diffs], Fri Aug 7 11:20:35 2015 UTC (7 years, 7 months ago) by jaapb
Branch: MAIN
Changes since 1.31: +2 -2
lines
Diff to previous 1.31 (colored)
Recursive revbump associated with lang/ocaml update.
Revision 1.31 / (download) - annotate - [select for diffs], Tue Jun 30 11:51:41 2015 UTC (7 years, 8 months ago) by jaapb
Branch: MAIN
Changes since 1.30: +2 -2
lines
Diff to previous 1.30 (colored)
Recursive revbump associated with update of lang/ocaml to 4.02.2
Revision 1.26.2.2 / (download) - annotate - [select for diffs], Sat Jun 13 09:13:56 2015 UTC (7 years, 9 months ago) by spz
Branch: pkgsrc-2015Q1
Changes since 1.26.2.1: +1 -1
lines
Diff to previous 1.26.2.1 (colored) to branchpoint 1.26 (colored) next main 1.27 (colored)
Pullup ticket #4746 - requested by khorben sysutils/xentools42: security patch Revisions pulled up: - sysutils/xentools42/Makefile 1.28 - sysutils/xentools42/distinfo 1.17 - sysutils/xentools42/patches/patch-CVE-2015-3456 1.1 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: khorben Date: Fri Jun 5 18:41:18 UTC 2015 Modified Files: pkgsrc/sysutils/xentools42: Makefile distinfo Added Files: pkgsrc/sysutils/xentools42/patches: patch-CVE-2015-3456 Log Message: Apply fixes from upstream for XSA-133 XXX pull-ups To generate a diff of this commit: cvs rdiff -u -r1.27 -r1.28 pkgsrc/sysutils/xentools42/Makefile cvs rdiff -u -r1.16 -r1.17 pkgsrc/sysutils/xentools42/distinfo cvs rdiff -u -r0 -r1.1 pkgsrc/sysutils/xentools42/patches/patch-CVE-2015-3456
Revision 1.30 / (download) - annotate - [select for diffs], Fri Jun 12 10:51:19 2015 UTC (7 years, 9 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q2-base,
pkgsrc-2015Q2
Changes since 1.29: +2 -2
lines
Diff to previous 1.29 (colored)
Recursive PKGREVISION bump for all packages mentioning 'perl', having a PKGNAME of p5-*, or depending such a package, for perl-5.22.0.
Revision 1.29 / (download) - annotate - [select for diffs], Thu Jun 11 17:43:21 2015 UTC (7 years, 9 months ago) by bouyer
Branch: MAIN
Changes since 1.28: +2 -2
lines
Diff to previous 1.28 (colored)
For disks larger than 128GB, the LBA capacity reported by IDE disks should be limited to 128GB, the real size being reported in LBA48 capacity. Should fix disk corrution reported by Reinoud Zandijk. Bump PKGREVISION
Revision 1.28 / (download) - annotate - [select for diffs], Fri Jun 5 18:41:18 2015 UTC (7 years, 9 months ago) by khorben
Branch: MAIN
Changes since 1.27: +2 -2
lines
Diff to previous 1.27 (colored)
Apply fixes from upstream for XSA-133 XXX pull-ups
Revision 1.26.2.1 / (download) - annotate - [select for diffs], Wed Apr 29 21:11:13 2015 UTC (7 years, 10 months ago) by tron
Branch: pkgsrc-2015Q1
Changes since 1.26: +2 -2
lines
Diff to previous 1.26 (colored)
Pullup ticket #4698 - requested by spz Pullup ticket #4698 - requested by spz sysutils/xenkernel41: security patch sysutils/xenkernel42: security patch sysutils/xenkernel45: security patch Revisions pulled up: - sysutils/xenkernel41/Makefile 1.45 - sysutils/xenkernel41/distinfo 1.36 - sysutils/xenkernel41/patches/patch-CVE-2015-2752 1.1 - sysutils/xenkernel41/patches/patch-CVE-2015-2756 1.1 - sysutils/xenkernel42/Makefile 1.15 - sysutils/xenkernel42/distinfo 1.13 - sysutils/xenkernel42/patches/patch-CVE-2015-2752 1.1 - sysutils/xenkernel42/patches/patch-CVE-2015-2756 1.1 - sysutils/xenkernel45/Makefile 1.6 - sysutils/xenkernel45/distinfo 1.5 - sysutils/xenkernel45/patches/patch-CVE-2015-2752 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-2756 1.1 - sysutils/xentools41/Makefile 1.50 - sysutils/xentools41/distinfo 1.38 - sysutils/xentools41/patches/patch-CVE-2015-2752 1.1 - sysutils/xentools41/patches/patch-CVE-2015-2756 1.1 - sysutils/xentools42/Makefile 1.27 - sysutils/xentools42/distinfo 1.16 - sysutils/xentools42/patches/patch-CVE-2015-2752 1.1 - sysutils/xentools42/patches/patch-CVE-2015-2756 1.1 - sysutils/xentools45/Makefile 1.6 - sysutils/xentools45/distinfo 1.6 - sysutils/xentools45/patches/patch-CVE-2015-2752 1.1 - sysutils/xentools45/patches/patch-CVE-2015-2756 1.1 --- Module Name: pkgsrc Committed By: spz Date: Sun Apr 19 13:13:21 UTC 2015 Modified Files: pkgsrc/sysutils/xenkernel41: Makefile distinfo pkgsrc/sysutils/xenkernel42: Makefile distinfo pkgsrc/sysutils/xenkernel45: Makefile distinfo pkgsrc/sysutils/xentools41: Makefile distinfo pkgsrc/sysutils/xentools42: Makefile distinfo pkgsrc/sysutils/xentools45: Makefile distinfo Added Files: pkgsrc/sysutils/xenkernel41/patches: patch-CVE-2015-2752 patch-CVE-2015-2756 pkgsrc/sysutils/xenkernel42/patches: patch-CVE-2015-2752 patch-CVE-2015-2756 pkgsrc/sysutils/xenkernel45/patches: patch-CVE-2015-2752 patch-CVE-2015-2756 pkgsrc/sysutils/xentools41/patches: patch-CVE-2015-2752 patch-CVE-2015-2756 pkgsrc/sysutils/xentools42/patches: patch-CVE-2015-2752 patch-CVE-2015-2756 pkgsrc/sysutils/xentools45/patches: patch-CVE-2015-2752 patch-CVE-2015-2756 Log Message: apply fixes from upstream for XSA-125 Long latency MMIO mapping operations are not preemptible XSA-126 Unmediated PCI command register access in qemu
Revision 1.27 / (download) - annotate - [select for diffs], Sun Apr 19 13:13:21 2015 UTC (7 years, 11 months ago) by spz
Branch: MAIN
Changes since 1.26: +2 -2
lines
Diff to previous 1.26 (colored)
apply fixes from upstream for XSA-125 Long latency MMIO mapping operations are not preemptible XSA-126 Unmediated PCI command register access in qemu
Revision 1.26 / (download) - annotate - [select for diffs], Fri Mar 13 09:43:41 2015 UTC (8 years ago) by spz
Branch: MAIN
CVS Tags: pkgsrc-2015Q1-base
Branch point for: pkgsrc-2015Q1
Changes since 1.25: +2 -3
lines
Diff to previous 1.25 (colored)
xsa119-4.2.patch from upstream:
From b6e327fde6c365086594e2b46edf435aa1671b1a Mon Sep 17 00:00:00 2001
From: Ian Campbell <ian.campbell@citrix.com>
Date: Fri, 20 Feb 2015 14:41:09 +0000
Subject: [PATCH] tools: libxl: Explicitly disable graphics backends on qemu
cmdline
By default qemu will try to create some sort of backend for the
emulated VGA device, either SDL or VNC.
However when the user specifies sdl=0 and vnc=0 in their configuration
libxl was not explicitly disabling either backend, which could lead to
one unexpectedly running.
If either sdl=1 or vnc=1 is configured then both before and after this
change only the backends which are explicitly enabled are configured,
i.e. this issue only occurs when all backends are supposed to have
been disabled.
This affects qemu-xen and qemu-xen-traditional differently.
If qemu-xen was compiled with SDL support then this would result in an
SDL window being opened if $DISPLAY is valid, or a failure to start
the guest if not. Passing "-display none" to qemu before any further
-sdl options disables this default behaviour and ensures that SDL is
only started if the libxl configuration demands it.
If qemu-xen was compiled without SDL support then qemu would instead
start a VNC server listening on ::1 (IPv6 localhost) or 127.0.0.1
(IPv4 localhost) with IPv6 preferred if available. Explicitly pass
"-vnc none" when vnc is not enabled in the libxl configuration to
remove this possibility.
qemu-xen-traditional would never start a vnc backend unless asked.
However by default it will start an SDL backend, the way to disable
this is to pass a -vnc option. In other words passing "-vnc none" will
disable both vnc and sdl by default. sdl can then be reenabled if
configured by subsequent use of the -sdl option.
Tested with both qemu-xen and qemu-xen-traditional built with SDL
support and:
xl cr # defaults
xl cr sdl=0 vnc=0
xl cr sdl=1 vnc=0
xl cr sdl=0 vnc=1
xl cr sdl=0 vnc=0 vga=\"none\"
xl cr sdl=0 vnc=0 nographic=1
with both valid and invalid $DISPLAY.
This is XSA-119.
Revision 1.25 / (download) - annotate - [select for diffs], Tue Jan 20 14:24:37 2015 UTC (8 years, 2 months ago) by jaapb
Branch: MAIN
Changes since 1.24: +2 -2
lines
Diff to previous 1.24 (colored)
Revbump associated with update of lang/ocaml.
Revision 1.24 / (download) - annotate - [select for diffs], Thu Oct 9 19:14:04 2014 UTC (8 years, 5 months ago) by jaapb
Branch: MAIN
CVS Tags: pkgsrc-2014Q4-base,
pkgsrc-2014Q4
Changes since 1.23: +2 -1
lines
Diff to previous 1.23 (colored)
Revbump for ocaml 4.02.0. (Some packages omitted because they will be updated to new versions)
Revision 1.22.2.1 / (download) - annotate - [select for diffs], Sun Sep 28 13:28:58 2014 UTC (8 years, 5 months ago) by tron
Branch: pkgsrc-2014Q2
Changes since 1.22: +3 -3
lines
Diff to previous 1.22 (colored) next main 1.23 (colored)
Pullup ticket #4506 - requested by bouyer
sysutils/xenkernel42: security patch
Revisions pulled up:
- sysutils/xenkernel42/Makefile 1.8
- sysutils/xenkernel42/distinfo 1.6
- sysutils/xenkernel42/patches/patch-xen_arch_x86_mm_shadow_common.c 1.1
- sysutils/xenkernel42/patches/patch-xen_arch_x86_x86_emulate_x86_emulate.c 1.1
- sysutils/xentools42/Makefile 1.23
- sysutils/xentools42/distinfo 1.12
---
Module Name: pkgsrc
Committed By: bouyer
Date: Fri Sep 26 10:39:32 UTC 2014
Modified Files:
pkgsrc/sysutils/xenkernel42: Makefile distinfo
pkgsrc/sysutils/xentools42: distinfo
Added Files:
pkgsrc/sysutils/xenkernel42/patches:
patch-xen_arch_x86_mm_shadow_common.c
patch-xen_arch_x86_x86_emulate_x86_emulate.c
Log Message:
Update xentools42 and xenkernel42 to Xen 4.2.5, fixing:
CVE-2014-2599 / XSA-89 HVMOP_set_mem_access is not preemptible
CVE-2014-3124 / XSA-92 HVMOP_set_mem_type allows invalid P2M entries to be
created
CVE-2014-3967,CVE-2014-3968 / XSA-96 Vulnerabilities in HVM MSI injection
CVE-2014-4021 / XSA-100 Hypervisor heap contents leaked to guests
pkgsrc also includes patches from the Xen Security Advisory:
XSA-104 (CVE-2014-7154) - Race condition in HVMOP_track_dirty_vram
XSA-105 (CVE-2014-7155) - Missing privilege level checks in x86 HLT, LGDT,
LIDT, and LMSW emulation
XSA-106 (CVE-2014-7156) - Missing privilege level checks in x86 emulation
of software interrupts
---
Module Name: pkgsrc
Committed By: bouyer
Date: Fri Sep 26 10:40:45 UTC 2014
Modified Files:
pkgsrc/sysutils/xentools42: Makefile
Log Message:
Update xentools42 and xenkernel42 to Xen 4.2.5, fixing:
CVE-2014-2599 / XSA-89 HVMOP_set_mem_access is not preemptible
CVE-2014-3124 / XSA-92 HVMOP_set_mem_type allows invalid P2M entries to be
created
CVE-2014-3967,CVE-2014-3968 / XSA-96 Vulnerabilities in HVM MSI injection
CVE-2014-4021 / XSA-100 Hypervisor heap contents leaked to guests
pkgsrc also includes patches from the Xen Security Advisory:
XSA-104 (CVE-2014-7154) - Race condition in HVMOP_track_dirty_vram
XSA-105 (CVE-2014-7155) - Missing privilege level checks in x86 HLT, LGDT,
LIDT, and LMSW emulation
XSA-106 (CVE-2014-7156) - Missing privilege level checks in x86 emulation
of software interrupts
Revision 1.23 / (download) - annotate - [select for diffs], Fri Sep 26 10:40:45 2014 UTC (8 years, 5 months ago) by bouyer
Branch: MAIN
CVS Tags: pkgsrc-2014Q3-base,
pkgsrc-2014Q3
Changes since 1.22: +3 -3
lines
Diff to previous 1.22 (colored)
Update xentools42 and xenkernel42 to Xen 4.2.5, fixing: CVE-2014-2599 / XSA-89 HVMOP_set_mem_access is not preemptible CVE-2014-3124 / XSA-92 HVMOP_set_mem_type allows invalid P2M entries to be created CVE-2014-3967,CVE-2014-3968 / XSA-96 Vulnerabilities in HVM MSI injection CVE-2014-4021 / XSA-100 Hypervisor heap contents leaked to guests pkgsrc also includes patches from the Xen Security Advisory: XSA-104 (CVE-2014-7154) - Race condition in HVMOP_track_dirty_vram XSA-105 (CVE-2014-7155) - Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation XSA-106 (CVE-2014-7156) - Missing privilege level checks in x86 emulation of software interrupts
Revision 1.22 / (download) - annotate - [select for diffs], Thu May 29 23:37:32 2014 UTC (8 years, 9 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2014Q2-base
Branch point for: pkgsrc-2014Q2
Changes since 1.21: +2 -2
lines
Diff to previous 1.21 (colored)
Bump for perl-5.20.0. Do it for all packages that * mention perl, or * have a directory name starting with p5-*, or * depend on a package starting with p5- like last time, for 5.18, where this didn't lead to complaints. Let me know if you have any this time.
Revision 1.21 / (download) - annotate - [select for diffs], Wed May 14 12:43:39 2014 UTC (8 years, 10 months ago) by gdt
Branch: MAIN
Changes since 1.20: +2 -2
lines
Diff to previous 1.20 (colored)
Use -f in ${CP} to place files into the source tree.
This resolves failures when rerunning make after a build failure when
one's source tree is mode 444.
Revision 1.20 / (download) - annotate - [select for diffs], Fri May 9 07:37:20 2014 UTC (8 years, 10 months ago) by wiz
Branch: MAIN
Changes since 1.19: +2 -2
lines
Diff to previous 1.19 (colored)
Mark packages that are not ready for python-3.3 also not ready for 3.4, until proven otherwise.
Revision 1.19 / (download) - annotate - [select for diffs], Sat Mar 29 09:05:51 2014 UTC (8 years, 11 months ago) by prlw1
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base,
pkgsrc-2014Q1
Changes since 1.18: +2 -1
lines
Diff to previous 1.18 (colored)
Fix build with gcc 4.8.
Revision 1.18 / (download) - annotate - [select for diffs], Mon Mar 3 16:42:00 2014 UTC (9 years ago) by jperkin
Branch: MAIN
Changes since 1.17: +2 -2
lines
Diff to previous 1.17 (colored)
Fix dependency pattern.
Revision 1.17 / (download) - annotate - [select for diffs], Sun Mar 2 13:53:18 2014 UTC (9 years ago) by wiz
Branch: MAIN
Changes since 1.16: +3 -1
lines
Diff to previous 1.16 (colored)
Add dependency on py-lxml, used by xenapi_create.py. Dependency reported missing by Kamil Rytarowski <n54@gmx.com> on pkgsrc-users. Bump PKGREVISION.
Revision 1.16 / (download) - annotate - [select for diffs], Sat Feb 22 01:28:23 2014 UTC (9 years, 1 month ago) by prlw1
Branch: MAIN
Changes since 1.15: +2 -3
lines
Diff to previous 1.15 (colored)
Update xentools42 to 4.2.4
Removed patch-libxc_xc_dom_h: commited as cb08944a
This fixes the following critical vulnerabilities:
- CVE-2013-2212 / XSA-60 Excessive time to disable caching with HVM guests with
PCI passthrough
- CVE-2013-1442 / XSA-62 Information leak on AVX and/or LWP capable CPUs
- CVE-2013-4355 / XSA-63 Information leaks through I/O instruction emulation
- CVE-2013-4361 / XSA-66 Information leak through fbld instruction emulation
- CVE-2013-4368 / XSA-67 Information leak through outs instruction emulation
- CVE-2013-4369 / XSA-68 possible null dereference when parsing vif ratelimiting
info
- CVE-2013-4370 / XSA-69 misplaced free in ocaml xc_vcpu_getaffinity stub
- CVE-2013-4371 / XSA-70 use-after-free in libxl_list_cpupool under memory press
ure
- CVE-2013-4375 / XSA-71 qemu disk backend (qdisk) resource leak
- CVE-2013-4416 / XSA-72 ocaml xenstored mishandles oversized message replies
- CVE-2013-4494 / XSA-73 Lock order reversal between page allocation and grant t
able locks
- CVE-2013-4553 / XSA-74 Lock order reversal between page_alloc_lock and mm_rwlo
ck
- CVE-2013-4551 / XSA-75 Host crash due to guest VMX instruction execution
- CVE-2013-4554 / XSA-76 Hypercalls exposed to privilege rings 1 and 2 of HVM gu
ests
- CVE-2013-6375 / XSA-78 Insufficient TLB flushing in VT-d (iommu) code
- CVE-2013-6400 / XSA-80 IOMMU TLB flushing may be inadvertently suppressed
- CVE-2013-6885 / XSA-82 Guest triggerable AMD CPU erratum may cause host hang
- CVE-2014-1642 / XSA-83 Out-of-memory condition yielding memory corruption duri
ng IRQ setup
- CVE-2014-1891 / XSA-84 integer overflow in several XSM/Flask hypercalls
- CVE-2014-1895 / XSA-85 Off-by-one error in FLASK_AVC_CACHESTAT hypercall
- CVE-2014-1896 / XSA-86 libvchan failure handling malicious ring indexes
- CVE-2014-1666 / XSA-87 PHYSDEVOP_{prepare,release}_msix exposed to unprivilege
d guests
- CVE-2014-1950 / XSA-88 use-after-free in xc_cpupool_getinfo() under memory pre
ssure
Apart from those there are many further bug fixes and improvements.
Revision 1.15 / (download) - annotate - [select for diffs], Sat Jan 25 10:45:21 2014 UTC (9 years, 1 month ago) by wiz
Branch: MAIN
Changes since 1.14: +20 -20
lines
Diff to previous 1.14 (colored)
No need to have two variables for the same logic. Replace PYTHON_PATCH_SCRIPTS with REPLACE_PYTHON.
Revision 1.14 / (download) - annotate - [select for diffs], Sat Jan 25 10:30:23 2014 UTC (9 years, 1 month ago) by wiz
Branch: MAIN
Changes since 1.13: +3 -2
lines
Diff to previous 1.13 (colored)
Mark packages as not ready for python-3.x where applicable; either because they themselves are not ready or because a dependency isn't. This is annotated by PYTHON_VERSIONS_INCOMPATIBLE= 33 # not yet ported as of x.y.z or PYTHON_VERSIONS_INCOMPATIBLE= 33 # py-foo, py-bar respectively, please use the same style for other packages, and check during updates. Use versioned_dependencies.mk where applicable. Use REPLACE_PYTHON instead of handcoded alternatives, where applicable. Reorder Makefile sections into standard order, where applicable. Remove PYTHON_VERSIONS_INCLUDE_3X lines since that will be default with the next commit. Whitespace cleanups and other nits corrected, where necessary.
Revision 1.13 / (download) - annotate - [select for diffs], Tue Jan 7 12:59:35 2014 UTC (9 years, 2 months ago) by prlw1
Branch: MAIN
Changes since 1.12: +2 -2
lines
Diff to previous 1.12 (colored)
Use native shm_open on newer NetBSD/current. As per joerg@'s fix for xentools41.
Revision 1.12 / (download) - annotate - [select for diffs], Sun Dec 8 19:17:56 2013 UTC (9 years, 3 months ago) by riz
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base,
pkgsrc-2013Q4
Changes since 1.11: +2 -2
lines
Diff to previous 1.11 (colored)
add patch from upstream to fix a regression which made that the symbol table of NetBSD domU kernels was not loaded correctly, see http://mail-index.netbsd.org/port-xen/2013/11/29/msg008157.html for details bump PKGREV
Revision 1.11 / (download) - annotate - [select for diffs], Mon Dec 2 20:38:12 2013 UTC (9 years, 3 months ago) by jnemeth
Branch: MAIN
Changes since 1.10: +2 -2
lines
Diff to previous 1.10 (colored)
The xendomains rc.d script should only depend on xencommons.
Revision 1.10 / (download) - annotate - [select for diffs], Thu Nov 7 00:47:39 2013 UTC (9 years, 4 months ago) by joerg
Branch: MAIN
Changes since 1.9: +8 -2
lines
Diff to previous 1.9 (colored)
Catch up with Clang ToT when it comes to various warnings and unsupported options.
Revision 1.9 / (download) - annotate - [select for diffs], Fri Nov 1 11:30:23 2013 UTC (9 years, 4 months ago) by jaapb
Branch: MAIN
Changes since 1.8: +2 -1
lines
Diff to previous 1.8 (colored)
Revision bump associated with the update of lang/ocaml to version 4.01.
Revision 1.8 / (download) - annotate - [select for diffs], Thu Sep 12 23:37:18 2013 UTC (9 years, 6 months ago) by prlw1
Branch: MAIN
CVS Tags: pkgsrc-2013Q3-base,
pkgsrc-2013Q3
Changes since 1.7: +5 -5
lines
Diff to previous 1.7 (colored)
Update xen to 4.2.3
- Add warning if /kern/xen/privcmd is not readable
Fixes the following critical vulnerabilities:
* CVE-2013-1918 / XSA-45:
Several long latency operations are not preemptible
* CVE-2013-1952 / XSA-49:
VT-d interrupt remapping source validation flaw for bridges
* CVE-2013-2076 / XSA-52:
Information leak on XSAVE/XRSTOR capable AMD CPUs
* CVE-2013-2077 / XSA-53:
Hypervisor crash due to missing exception recovery on XRSTOR
* CVE-2013-2078 / XSA-54:
Hypervisor crash due to missing exception recovery on XSETBV
* CVE-2013-2194, CVE-2013-2195, CVE-2013-2196 / XSA-55:
Multiple vulnerabilities in libelf PV kernel handling
* CVE-2013-2072 / XSA-56:
Buffer overflow in xencontrol Python bindings affecting xend
* CVE-2013-2211 / XSA-57:
libxl allows guest write access to sensitive console related xenstore keys
* CVE-2013-1432 / XSA-58:
Page reference counting error due to XSA-45/CVE-2013-1918 fixes
* XSA-61:
libxl partially sets up HVM passthrough even with disabled iommu
The following minor vulnerability is also being addressed:
* CVE-2013-2007 / XSA-51
qemu guest agent (qga) insecure file permissions
Among many bug fixes and improvements:
* addressing a regression from the fix for XSA-46
* bug fixes to low level system state handling, including certain
hardware errata workarounds
Revision 1.7 / (download) - annotate - [select for diffs], Mon Jun 17 13:55:38 2013 UTC (9 years, 9 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base,
pkgsrc-2013Q2
Changes since 1.6: +11 -11
lines
Diff to previous 1.6 (colored)
Fix paths for some perl scripts.
Revision 1.6 / (download) - annotate - [select for diffs], Tue Jun 4 07:38:49 2013 UTC (9 years, 9 months ago) by wiz
Branch: MAIN
Changes since 1.5: +2 -3
lines
Diff to previous 1.5 (colored)
Replace py-curses/buildlink3.mk with DEPENDS. There are no buildlink3-relevant files here, just a loadable module.
Revision 1.5 / (download) - annotate - [select for diffs], Fri May 31 12:42:05 2013 UTC (9 years, 9 months ago) by wiz
Branch: MAIN
Changes since 1.4: +2 -2
lines
Diff to previous 1.4 (colored)
Bump all packages for perl-5.18, that a) refer 'perl' in their Makefile, or b) have a directory name of p5-*, or c) have any dependency on any p5-* package Like last time, where this caused no complaints.
Revision 1.4 / (download) - annotate - [select for diffs], Sun May 26 20:27:43 2013 UTC (9 years, 9 months ago) by bouyer
Branch: MAIN
Changes since 1.3: +33 -4
lines
Diff to previous 1.3 (colored)
Build and install HVM-related files. Good enough to boot the NetBSD 6.1 i386 CD and do a network install. Bump PKGREVISION
Revision 1.3 / (download) - annotate - [select for diffs], Sat May 25 05:19:17 2013 UTC (9 years, 9 months ago) by jnemeth
Branch: MAIN
Changes since 1.2: +4 -1
lines
Diff to previous 1.2 (colored)
Some general package cleanups: - added to MESSAGE advising of rc.d script changes - added BASH as a tool - fixed pygrub install so that it doesn't get overwritten with a symlink - turned oxenstored.conf into a proper config file
Revision 1.2 / (download) - annotate - [select for diffs], Wed May 22 05:32:43 2013 UTC (9 years, 10 months ago) by jnemeth
Branch: MAIN
Changes since 1.1: +2 -2
lines
Diff to previous 1.1 (colored)
Add bash to TOOLS, but hold off on PKGREVISION as another bug fix should be going in very soon.
Revision 1.1 / (download) - annotate - [select for diffs], Wed May 15 06:58:50 2013 UTC (9 years, 10 months ago) by jnemeth
Branch: MAIN
Initial import of Xen 4.2: this is the tools part. This is mostly
functional for PV domains. Support for HVM domains and grant tables
is still to come. Note that xm/xend is deprecated in this version.
You should switch to using xl (which is tested to be working) if
you can.
----- 4.2.2
Xen 4.2.2 is a maintenance release in the 4.2 series and contains:
We recommend that all users of Xen 4.2.1 upgrade to Xen 4.2.2.
This release fixes the following critical vulnerabilities:
CVE-2012-5634 / XSA-33: VT-d interrupt remapping source
validation flaw
CVE-2013-0151 / XSA-34: nested virtualization on 32-bit
exposes host crash
CVE-2013-0152 / XSA-35: Nested HVM exposes host to being
driven out of memory by guest
CVE-2013-0153 / XSA-36: interrupt remap entries shared and
old ones not cleared on AMD IOMMUs
CVE-2013-0154 / XSA-37: Hypervisor crash due to incorrect
ASSERT (debug build only)
CVE-2013-0215 / XSA-38: oxenstored incorrect handling of
certain Xenbus ring states
CVE-2012-6075 / XSA-41: qemu (e1000 device driver): Buffer
overflow when processing large packets
CVE-2013-1917 / XSA-44: Xen PV DoS vulnerability with SYSENTER
CVE-2013-1919 / XSA-46: Several access permission issues with
IRQs for unprivileged guests
CVE-2013-1920 / XSA-47: Potential use of freed memory in event
channel operations
CVE-2013-1922 / XSA-48: qemu-nbd format-guessing due to missing
format specification
This release contains many bug fixes and improvements (around
100 since Xen 4.2.1). The highlights are:
ACPI APEI/ERST finally working on production systems
Bug fixes for other low level system state handling
Bug fixes and improvements to the libxl tool stack
Bug fixes to nested virtualization
----- 4.2.1
Xen 4.2.1 is a maintenance release in the 4.2 series and contains:
We recommend that all users of Xen 4.2.0 upgrade to Xen 4.2.1.
The release fixes the following critical vulnerabilities:
CVE-2012-4535 / XSA-20: Timer overflow DoS vulnerability
CVE-2012-4537 / XSA-22: Memory mapping failure DoS
vulnerability
CVE-2012-4538 / XSA-23: Unhooking empty PAE entries DoS
vulnerability
CVE-2012-4539 / XSA-24: Grant table hypercall infinite
loop DoS vulnerability
CVE-2012-4544, CVE-2012-2625 / XSA-25: Xen domain builder
Out-of-memory due to malicious kernel/ramdisk
CVE-2012-5510 / XSA-26: Grant table version switch list
corruption vulnerability
CVE-2012-5511 / XSA-27: Several HVM operations do not
validate the range of their inputs
CVE-2012-5513 / XSA-29: XENMEM_exchange may overwrite
hypervisor memory
CVE-2012-5514 / XSA-30: Broken error handling in
guest_physmap_mark_populate_on_demand()
CVE-2012-5515 / XSA-31: Several memory hypercall operations
allow invalid extent order values
CVE-2012-5525 / XSA-32: several hypercalls do not validate
input GFNs
Among many bug fixes and improvements (around 100 since Xen 4.2.0):
A fix for a long standing time management issue
Bug fixes for S3 (suspend to RAM) handling
Bug fixes for other low level system state handling
Bug fixes and improvements to the libxl tool stack
Bug fixes to nested virtualization
----- 4.2.0
The Xen 4.2 release contains a number of important new features
and updates including:
The release incorporates many new features and improvements to
existing features. There are improvements across the board including
to Security, Scalability, Performance and Documentation.
XL is now the default toolstack: Significant effort has gone
in to the XL tool toolstack in this release and it is now feature
complete and robust enough that we have made it the default. This
toolstack can now replace xend in the majority of deployments, see
XL vs Xend Feature Comparison. As well as improving XL the underlying
libxl library has been significantly improved and supports the
majority of the most common toolstack features. In addition the
API has been declared stable which should make it even easier for
external toolstack such as libvirt and XCP's xapi to make full use
of this functionality in the future.
Large Systems: Following on from the improvements made in 4.1
Xen now supports even larger systems, with up to 4095 host CPUs
and up to 512 guest CPUs. In addition toolstack feature like the
ability to automatically create a CPUPOOL per NUMA node and more
intelligent placement of guest VCPUs on NUMA nodes have further
improved the Xen experience on large systems. Other new features,
such as multiple PCI segment support have also made a positive
impact on such systems.
Improved security: The XSM/Flask subsystem has seen several
enhancements, including improved support for disaggregated systems
and a rewritten example policy which is clearer and simpler to
modify to suit local requirements.
Documentation: The Xen documentation has been much improved,
both the in-tree documentation and the wiki. This is in no small
part down to the success of the Xen Document Days so thanks to all
who have taken part.