Debian Package Tracker

From: Ian Jackson <ijackson@chiark.greenend.org.uk>
To: <debian-changes@lists.debian.org>
Subject: Accepted xen 4.8.5+shim4.10.2+xsa282-1+deb9u11 (all amd64 source) into proposed-updates->stable-new, proposed-updates
Date: Tue, 29 Jan 2019 13:03:57 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 11 Jan 2019 18:01:30 +0000
Source: xen
Binary: libxen-4.8 libxenstore3.0 libxen-dev xenstore-utils xen-utils-common xen-utils-4.8 xen-hypervisor-4.8-amd64 xen-system-amd64 xen-hypervisor-4.8-arm64 xen-system-arm64 xen-hypervisor-4.8-armhf xen-system-armhf
Architecture: all amd64 source
Version: 4.8.5+shim4.10.2+xsa282-1+deb9u11
Distribution: stretch-security
Urgency: medium
Maintainer: Debian Xen Team <pkg-xen-devel@lists.alioth.debian.org>
Changed-By: Ian Jackson <ijackson@chiark.greenend.org.uk>
Description: 
 libxen-4.8 - Public libs for Xen
 libxen-dev - Public headers and libs for Xen
 libxenstore3.0 - Xenstore communications library for Xen
 xen-hypervisor-4.8-amd64 - Xen Hypervisor on AMD64
 xen-hypervisor-4.8-arm64 - Xen Hypervisor on ARM64
 xen-hypervisor-4.8-armhf - Xen Hypervisor on ARMHF
 xen-system-amd64 - Xen System on AMD64 (meta-package)
 xen-system-arm64 - Xen System on ARM64 (meta-package)
 xen-system-armhf - Xen System on ARMHF (meta-package)
 xen-utils-4.8 - XEN administrative tools
 xen-utils-common - Xen administrative tools - common files
 xenstore-utils - Xenstore command line utilities for Xen
Changes:
 xen (4.8.5+shim4.10.2+xsa282-1+deb9u11) stretch-security; urgency=medium
 .
   * Update to new upstream versions:
      * Main tree updated to Xen 4.8.5
      * Shim updated to current upstream stable-4.10 branch, to
        avoid errors trying to cherry-pick security patches.
   * This includes fixes to:
        XSA-282 	CVE-2018-19967                 Xen 4.8 and 4.10 shim
        XSA-280 	CVE-2018-19966                 Xen 4.8 and 4.10 shim
        XSA-279 	CVE-2018-19965                 Xen 4.8 and 4.10 shim
        XSA-275 	CVE-2018-19961 CVE-2018-19962  Xen 4.8 and 4.10 shim
        XSA-278 	CVE-2018-18883                 Xen 4.10 shim only
   * For completeness, the following fixes are not applicable:
        XSA-274 	CVE-2018-14678        Bug is in Linux
        XSA-270 	CVE-2018-15471        Bug is in Linux
        XSA-271 	CVE-2018-14007        Bug is in XAPI (not in Debian)
        XSA-277 	CVE-2018-19964        Bug not in either 4.8 or 4.10
        XSA-276 	CVE-2018-19963        Bug not in either 4.8 or 4.10
   * Added CVEs to previous changelog entries:
        4.8.4+xsa273+shim4.10.1+xsa273-1+deb9u10
        4.8.3+xsa267+shim4.10.1+xsa267-1+deb9u9
Checksums-Sha1: 
 26397bb55fb65b6f972adccc5586140f554c5778 3107 xen_4.8.5+shim4.10.2+xsa282-1+deb9u11.dsc
 80f144fd20977d18141878b321c47b65ad6c4da8 4116120 xen_4.8.5+shim4.10.2+xsa282.orig-shim.tar.xz
 172c588e09cb18afeb39b90d30364020675ab9be 3864560 xen_4.8.5+shim4.10.2+xsa282.orig.tar.xz
 32997cb1e6203e3da383ed0cd01485addc37e040 58284 xen_4.8.5+shim4.10.2+xsa282-1+deb9u11.debian.tar.xz
 b13a9ff1c9fe34f9412589a42d6b8bfa85cf854e 1610024 libxen-4.8-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 26724416f5e201062ad56cd22d3768816cbd714c 413076 libxen-4.8_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 53c1dbba69d63adb19698eb10c7007c8b0206eb2 652262 libxen-dev_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 8e2e72c2c01788105e54fd2fe06ad35ea1c60aa5 25246 libxenstore3.0-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 4984202f127408884d9f6652050fc979d966950b 35124 libxenstore3.0_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 ea065a2a425619d8db107c72e70aa2cf917a5d4f 2316266 xen-hypervisor-4.8-amd64_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 8e1220a0c5a9881c775c23d894520738a053e6b7 24154 xen-system-amd64_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 e355c77ba8b3548ee9715ac3edbe9cec0dc117b3 854440 xen-utils-4.8-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 88068deb6303050351c4b4117b623f03e498f439 424272 xen-utils-4.8_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 eb78b17c2f6466c0553feb3eea5efcf1734bf3de 287300 xen-utils-common_4.8.5+shim4.10.2+xsa282-1+deb9u11_all.deb
 d53a58769a34fc02d9960ed595c3f949aeb82fc3 12094 xen_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.buildinfo
 e7a82a9b7d3a0688f7d6f6af3dbda09301837703 13374 xenstore-utils-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 efe5b45229b188c57b72cbeedb098528b9966c61 30906 xenstore-utils_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
Checksums-Sha256: 
 882bb7037b87afceb838261b4b705b2ff67d96d4fd4e2349d17e21fb48c87154 3107 xen_4.8.5+shim4.10.2+xsa282-1+deb9u11.dsc
 416a61e8f1b79c9495404bb35695cf14e28aeb1bcf0d9864ac45d00f6d42003b 4116120 xen_4.8.5+shim4.10.2+xsa282.orig-shim.tar.xz
 781687ed73f26ebfeee4b7e040b95dd6bb46697158c853037a22cf965e0366a7 3864560 xen_4.8.5+shim4.10.2+xsa282.orig.tar.xz
 0b67070328f7eda7faa6e0ce6dd760a5cc4e547a15e79d1fcd52c3b84df54429 58284 xen_4.8.5+shim4.10.2+xsa282-1+deb9u11.debian.tar.xz
 f2d81dc6801e55dffe24abfa3d23909ed3d2f3d29942ecc8b79a5dc0a9682477 1610024 libxen-4.8-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 b3c6a96c9f6fbcb3d8b20dd81ad8ace42ada1c9dcd81a06f74e6a63bffceb727 413076 libxen-4.8_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 de4b4c9ecb2a149c9371ba72eec5ab0b4a70a06d25abd867d51bf0f4cdf19e5e 652262 libxen-dev_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 3408cdddd509092d093116530f78ab1a904096d28ae7d9551a147b36832f250e 25246 libxenstore3.0-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 a1c63d71f68dee29cd9d864c9b3920e86098bf08691fcdfb1d761c95821531df 35124 libxenstore3.0_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 d824474d508ce4cf75dea2ad18ce1bd84c85f7c61d76e081513552636c739cc2 2316266 xen-hypervisor-4.8-amd64_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 9e2cf01bcd6c371f725eb6bddf4a3b64376d445b8983baa71a0d73a77d204573 24154 xen-system-amd64_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 bab9734f8eb5c9cd1c5770e1e694e1ab541dab29c93fb02023a42f92aa54b0cb 854440 xen-utils-4.8-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 a75523c097c6f401fa341b912ff26e0dacac56e176931ef1df04de7fc4745b37 424272 xen-utils-4.8_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 bd8069595f816582a61c11b29c17af8b24638832ef1d676819db77791ee856d0 287300 xen-utils-common_4.8.5+shim4.10.2+xsa282-1+deb9u11_all.deb
 2ee58c54aaf3fc7903229094c5bc24f533e96c195fc31f8142bbb416b7f9e4ea 12094 xen_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.buildinfo
 81f9562cd797f2c660cde374da15e0fb1d0ba606bc4a706c3bba3c9b76628ab0 13374 xenstore-utils-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 10bbf91c48e2106c8acf79ba364fc374d4f42bad4c45732a2c0a52b01e3654c4 30906 xenstore-utils_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
Files: 
 4222c8a23c0ff122bfcb8d8a7e2ddbc7 3107 kernel optional xen_4.8.5+shim4.10.2+xsa282-1+deb9u11.dsc
 32d27e84b328de27e5c3008037fdd164 4116120 kernel optional xen_4.8.5+shim4.10.2+xsa282.orig-shim.tar.xz
 dcf7189cadc118a6c3bdfc592aad5f66 3864560 kernel optional xen_4.8.5+shim4.10.2+xsa282.orig.tar.xz
 139d8c9d1c669beb5fad899ee05cc81f 58284 kernel optional xen_4.8.5+shim4.10.2+xsa282-1+deb9u11.debian.tar.xz
 c8a65a120c940b5c6802a582c9c4c8e9 1610024 debug extra libxen-4.8-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 aa6990fc381a31b426ba740bdeb97370 413076 libs optional libxen-4.8_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 1629f750ce522149498205fe605fd6f3 652262 libdevel optional libxen-dev_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 7f122d06001dcb41d6c9bc418e6f5221 25246 debug extra libxenstore3.0-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 ece8df254d3091b89f16a08b35f80dff 35124 libs optional libxenstore3.0_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 b43f70544da172ef6372a0b8d6e0b868 2316266 kernel optional xen-hypervisor-4.8-amd64_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 d19c046ec15eecb46ae9a0448fd88030 24154 kernel optional xen-system-amd64_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 99bc566ab0ce13f8ddc83a9eacd3fb40 854440 debug extra xen-utils-4.8-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 6b5a1323c0ef78f77ad38f14c33bb6a6 424272 kernel optional xen-utils-4.8_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 166c56e16ab0847af7580b10060de50e 287300 kernel optional xen-utils-common_4.8.5+shim4.10.2+xsa282-1+deb9u11_all.deb
 87a91b2914d8b895276ea4571ea19e69 12094 kernel optional xen_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.buildinfo
 76b11f3ee6cd3a456f311c3eb0557cda 13374 debug extra xenstore-utils-dbgsym_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb
 168ab7d36bfbae60e44a527b729e0be6 30906 admin optional xenstore-utils_4.8.5+shim4.10.2+xsa282-1+deb9u11_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEVZrkbC1rbTJl58uh4+M5I0i1DTkFAlw43SwACgkQ4+M5I0i1
DTlO5AgAqxUl1PnepUGuVwcP38ef5Rq4P9T7Oe7xYG9dlXHykPzxf9A3wDd8onrH
EnisZodeO/XIucG/ys7Zu3TpyEvRBAV0DkKBWJ2jJap8JzgtBVdPdqrh9HkboChz
W3f/dmDwSqWNChUNylpn8UgJ7N8DCWJd6zbCl+UpimTJFyZTKfuL8OAbflyUZAKj
HtPDJDKnCe0/KWELE76ehN8q3E4322vdv1iGHqWtRPwNj+D9GYugeuEt7AvSVjve
a4D9J7lQvzOdC9B0nEpGFt/VUEM6ruapJ4frbtC697Iy/XhKZEcU7NK+vud8JrXC
h/agZgdUKELa9PMnn8EJBnbi2h6z9Q==
=EDgq
-----END PGP SIGNATURE-----
News for package xen
