-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 11 Dec 2020 22:10:09 +0100 Source: xen Binary: libxen-dev libxencall1 libxencall1-dbgsym libxendevicemodel1 libxendevicemodel1-dbgsym libxenevtchn1 libxenevtchn1-dbgsym libxenforeignmemory1 libxenforeignmemory1-dbgsym libxengnttab1 libxengnttab1-dbgsym libxenmisc4.11 libxenmisc4.11-dbgsym libxenstore3.0 libxenstore3.0-dbgsym libxentoolcore1 libxentoolcore1-dbgsym libxentoollog1 libxentoollog1-dbgsym xen-doc xen-hypervisor-4.11-amd64 xen-hypervisor-common xen-system-amd64 xen-utils-4.11 xen-utils-4.11-dbgsym xen-utils-common xen-utils-common-dbgsym xenstore-utils xenstore-utils-dbgsym Architecture: source amd64 all Version: 4.11.4+57-g41a822c392-2 Distribution: buster-security Urgency: high Maintainer: Debian Xen Team <pkg-xen-devel@lists.alioth.debian.org> Changed-By: Hans van Kranenburg <hans@knorrie.org> Description: libxen-dev - Public headers and libs for Xen libxencall1 - Xen runtime library - libxencall libxendevicemodel1 - Xen runtime libraries - libxendevicemodel libxenevtchn1 - Xen runtime libraries - libxenevtchn libxenforeignmemory1 - Xen runtime libraries - libxenforeignmemory libxengnttab1 - Xen runtime libraries - libxengnttab libxenmisc4.11 - Xen runtime libraries - miscellaneous, versioned ABI libxenstore3.0 - Xen runtime libraries - libxenstore libxentoolcore1 - Xen runtime libraries - libxentoolcore libxentoollog1 - Xen runtime libraries - libxentoollog xen-doc - XEN documentation xen-hypervisor-4.11-amd64 - Xen Hypervisor on AMD64 xen-hypervisor-common - Xen Hypervisor - common files xen-system-amd64 - Xen System on AMD64 (metapackage) xen-utils-4.11 - XEN administrative tools xen-utils-common - Xen administrative tools - common files xenstore-utils - Xenstore command line utilities for Xen Changes: xen (4.11.4+57-g41a822c392-2) buster-security; urgency=high . * Apply security fixes for the following issues: - oxenstored: permissions not checked on root node XSA-353 (CVE-2020-29479) - xenstore watch notifications lacking permission checks XSA-115 (CVE-2020-29480) - Xenstore: new domains inheriting existing node permissions XSA-322 (CVE-2020-29481) - Xenstore: wrong path length check XSA-323 (CVE-2020-29482) - Xenstore: guests can crash xenstored via watchs XSA-324 (CVE-2020-29484) - Xenstore: guests can disturb domain cleanup XSA-325 (CVE-2020-29483) - oxenstored memory leak in reset_watches XSA-330 (CVE-2020-29485) - oxenstored: node ownership can be changed by unprivileged clients XSA-352 (CVE-2020-29486) - undue recursion in x86 HVM context switch code XSA-348 (CVE-2020-29566) - FIFO event channels control block related ordering XSA-358 (CVE-2020-29570) - FIFO event channels control structure ordering XSA-359 (CVE-2020-29571) * Note that the following XSA are not listed, because... - XSA-349 and XSA-350 have patches for the Linux kernel - XSA-354 has patches for the XAPI toolstack - XSA-356 only applies to Xen 4.14 Checksums-Sha1: 9d6d6975aa3a394c3a1223b21de0b58d1d07902d 4082 xen_4.11.4+57-g41a822c392-2.dsc e23ac4a8bf55c180fbbee73edbd5e15f0128ba84 165308 xen_4.11.4+57-g41a822c392-2.debian.tar.xz eb31a5880781dfad675a1b0abb256dcc610a2306 723188 libxen-dev_4.11.4+57-g41a822c392-2_amd64.deb 449a6511a9edaf1e74ea9c5a12799348a9ba2216 13620 libxencall1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 4aacee57041792a460d2165da23b129a6aaa3511 34876 libxencall1_4.11.4+57-g41a822c392-2_amd64.deb 8447e4d2a4b1a4126314f2bb076c1ffe6e697648 17884 libxendevicemodel1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 35534674a8b235f2dac6cacf6e785dfda57500eb 35900 libxendevicemodel1_4.11.4+57-g41a822c392-2_amd64.deb 5d1ef8a4d7c17cae9bcff279e178523c3813494e 8420 libxenevtchn1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 2e279106fd0b420e480fef3b958d202a633c27d3 33464 libxenevtchn1_4.11.4+57-g41a822c392-2_amd64.deb e9f00b9e09c7db6fa87a1f75b1f4633d06e0fe85 12496 libxenforeignmemory1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 2bf394963f340d4dcc09c565dbf3eb2568958508 35316 libxenforeignmemory1_4.11.4+57-g41a822c392-2_amd64.deb 861cf0eecc4866f0c7b96cfd8d8d057282588918 14408 libxengnttab1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 15be7964c9a1e812e70dae5db1a13c1f746228d5 35196 libxengnttab1_4.11.4+57-g41a822c392-2_amd64.deb 4f9df2be67a9a6e64f884f86b7319070bf21ec3b 2276352 libxenmisc4.11-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 6b2214fad368df325a8e05c9037bfe2196d9aa5d 469404 libxenmisc4.11_4.11.4+57-g41a822c392-2_amd64.deb 872a4300e394a26ea81acedd9d072fdd5466fd1b 33784 libxenstore3.0-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb a01f011467ad48a249fdcb18dea777c10df5fe5b 42320 libxenstore3.0_4.11.4+57-g41a822c392-2_amd64.deb 29a6b805829c51037c05f777dd17f6977ef61bc8 5124 libxentoolcore1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 85977791a93791aa76831d6c6bf6f641984277f3 32908 libxentoolcore1_4.11.4+57-g41a822c392-2_amd64.deb 65b88bc14399f0eaff93a45f63da808d268952bc 11328 libxentoollog1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb e10644b1e5effcfafd12e83cd8d6cabc313e4869 34732 libxentoollog1_4.11.4+57-g41a822c392-2_amd64.deb 0ded0ee1a67d5842ddfe99b10dfb07abd39ca8e6 434968 xen-doc_4.11.4+57-g41a822c392-2_amd64.deb 976385eab9f6dc41dd281598a662e50d94a5c7e0 15098880 xen-hypervisor-4.11-amd64_4.11.4+57-g41a822c392-2_amd64.deb c6e07d75b18aab8ce6b148ee6fe0dd1ad1f7dcea 32720 xen-hypervisor-common_4.11.4+57-g41a822c392-2_all.deb b020c7afeee4744545ea5c80c6cba4998b60f2ba 30856 xen-system-amd64_4.11.4+57-g41a822c392-2_amd64.deb 6d8497666bca1c9682de9579a6cbc1ff008b2fa7 1066004 xen-utils-4.11-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 9756727c1d808ef65f2da4d8aad77756f4dca0b0 7146160 xen-utils-4.11_4.11.4+57-g41a822c392-2_amd64.deb 6cba04e5768551b39267e6a900b609d4e8964869 259620 xen-utils-common-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb f33ab610273f6fed0db57ea9db1f7c9e201aac88 276180 xen-utils-common_4.11.4+57-g41a822c392-2_amd64.deb 6d2af033e20998636c0f1eeaa59bf5d0bd7635f3 18111 xen_4.11.4+57-g41a822c392-2_amd64.buildinfo 9a2681e5514c873f44f83f43a4c8efc5539f13a8 19876 xenstore-utils-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 3c3eb7f0bf8e4750a18cd984bdaca4b9b68091d5 46080 xenstore-utils_4.11.4+57-g41a822c392-2_amd64.deb Checksums-Sha256: 5346213e9f203d64a426f5cfda94669c2cbe3c8d645620740053a49781e91e5d 4082 xen_4.11.4+57-g41a822c392-2.dsc 1b6bbf5dc05a11d28509b1f25cb96e256b91ce48b4c3667e77194e783f25ed88 165308 xen_4.11.4+57-g41a822c392-2.debian.tar.xz 50c07a0659e37b0fdbddcbc9442f40deab83947eee458c8400925e0d0cdaa678 723188 libxen-dev_4.11.4+57-g41a822c392-2_amd64.deb a68d801df26029e3f97e5075d8de53e8b653c177dcb66286219b2be49b185d12 13620 libxencall1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 4b019873fbfe0b1e2d1d702265471b219fe880c5884156d1f21313be41f40ac1 34876 libxencall1_4.11.4+57-g41a822c392-2_amd64.deb 99a4511e4a4afbdc31011c9a723468db80fbaff47b7de27caa9b2cf66cfeb60b 17884 libxendevicemodel1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 8ddc60ee54a503b0b4a6279337e9818021f483f0b1683dedfa46b3c9d1c27868 35900 libxendevicemodel1_4.11.4+57-g41a822c392-2_amd64.deb 5462fc209df15a497ee92285fb156a1f79692825a5291e7505516dcebe60b24d 8420 libxenevtchn1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb f3d1ae7536593c978c8239df3b0b01d10559c55df9ff75997fcee83245c3c0c8 33464 libxenevtchn1_4.11.4+57-g41a822c392-2_amd64.deb cfeb3bf6ab8034834177ccff20749f93d40e3a789bdb12a7d890d856d3ea774b 12496 libxenforeignmemory1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb f8da3158b8fa15ff0c86fb49b5d1d2242930c28f74c6da370197d724f5d53d67 35316 libxenforeignmemory1_4.11.4+57-g41a822c392-2_amd64.deb 8b0fb6478f443ecd196f14fde8ddbde280adfdc92174cc2d287d8269e6215ac8 14408 libxengnttab1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 6e3277e3a6347dd5613746a20ce5cdbd17c285e023617ac3c3cfa030e395438e 35196 libxengnttab1_4.11.4+57-g41a822c392-2_amd64.deb 605aa9d66f541c7b04bae685990dcc8f6c126645bc25c8e8d644380cc6aea327 2276352 libxenmisc4.11-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 29e7fd42b4b18eef84442213d5c739cef7aad63f6ab861b4c3cecfd02526c579 469404 libxenmisc4.11_4.11.4+57-g41a822c392-2_amd64.deb b43dd2d93eb5f37f278af13b32909a1a38bee72f7a3b3a39ed6800ff0b322972 33784 libxenstore3.0-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb d1774fdae43477f78598f15a313f0bc1d1ac5e82a0e2443d88f91872ca3e9226 42320 libxenstore3.0_4.11.4+57-g41a822c392-2_amd64.deb 437adb3a4da963ce95f5077af9150b4d76388489113fb4851e63a3b49c0e7719 5124 libxentoolcore1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 19f46a42955f123ea12166eca8681545b67058cca0a5350fa01afbd297940964 32908 libxentoolcore1_4.11.4+57-g41a822c392-2_amd64.deb 703c6a64e37da4ae08d7a3f8d4c09cae4a34097b2645272b94e9970b9f22f2b0 11328 libxentoollog1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 40b90c74086b454b531d4c944b3a209d788f5a60b2a6c4be7fdb40997d256124 34732 libxentoollog1_4.11.4+57-g41a822c392-2_amd64.deb c9529d85efdcbbbe1b154c30231c80f87fe85bc9146872b3cca539be563c0d37 434968 xen-doc_4.11.4+57-g41a822c392-2_amd64.deb 5415eacbdf17275ff657789873e5afb78eea87b15c635f3c0cd33891d444620a 15098880 xen-hypervisor-4.11-amd64_4.11.4+57-g41a822c392-2_amd64.deb 20556be59466538145b0518d159802c5666451f459e4d7a1a4c8ee5172aba23b 32720 xen-hypervisor-common_4.11.4+57-g41a822c392-2_all.deb 02a1a8ff5713fe6f9c3ba87c9572ebcac1cb4b7baec9ffc3251e2d44ca9ee03e 30856 xen-system-amd64_4.11.4+57-g41a822c392-2_amd64.deb 4993e59ee37b3ae98d2d36186d91e24052db2d1c6c5548741dd883cbb5f87276 1066004 xen-utils-4.11-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 72e24071e3479b2652b2634cdcd2570efe619ddc5bdbb78c0d6247e464072972 7146160 xen-utils-4.11_4.11.4+57-g41a822c392-2_amd64.deb 39533ea3d17614709738e4917af5f285e669c506fd6deb326a53b0f7b811ac6d 259620 xen-utils-common-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 940afa34fc959d9607601e0bfc04182b09bacb4cccf3bfd2e851e875b7e09bcb 276180 xen-utils-common_4.11.4+57-g41a822c392-2_amd64.deb 5ef60dd5484c499fac2bdb292e3e54c57dd61632e5809379e5771200cbfb79e5 18111 xen_4.11.4+57-g41a822c392-2_amd64.buildinfo 53b94e6ff36a1c9708564bd523910649e996c64bd77e28ff2e83eff2ad0d3cfe 19876 xenstore-utils-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 17d3b9b256d5dce77ba95f704efd8552e2cb7c7e7daa734341b3f942f3180f86 46080 xenstore-utils_4.11.4+57-g41a822c392-2_amd64.deb Files: a6ea04b49720da9f2dc0a2f83c9ae689 4082 admin optional xen_4.11.4+57-g41a822c392-2.dsc ec38cc93aa5a7aa6bfc10277ad5aca2b 165308 admin optional xen_4.11.4+57-g41a822c392-2.debian.tar.xz 9a11157327b884c5022c497631fd3690 723188 libdevel optional libxen-dev_4.11.4+57-g41a822c392-2_amd64.deb ae58d8c3865c08ea91dc9d3ae8698a10 13620 debug optional libxencall1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 5621a5312e892e827bccc0257503bc8e 34876 libs optional libxencall1_4.11.4+57-g41a822c392-2_amd64.deb 431c100452d29507e86b39202dfa00d3 17884 debug optional libxendevicemodel1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 573e970641a7e5dc5008d413a2da2262 35900 libs optional libxendevicemodel1_4.11.4+57-g41a822c392-2_amd64.deb ba6c2b1fbfbc96d2b3d46645590c2d90 8420 debug optional libxenevtchn1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 98ac2975c2501ca527160cc20afd5231 33464 libs optional libxenevtchn1_4.11.4+57-g41a822c392-2_amd64.deb 8693f48036c4d79442d11fd32018712d 12496 debug optional libxenforeignmemory1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 879abd5b9220a910605f5ff686d4fbe6 35316 libs optional libxenforeignmemory1_4.11.4+57-g41a822c392-2_amd64.deb 429a9448bf68852edf1c885c1c38f45b 14408 debug optional libxengnttab1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 19f9532e56b721008b8984db2b1f774b 35196 libs optional libxengnttab1_4.11.4+57-g41a822c392-2_amd64.deb f400813bb9738d9fdac958ae272f7e25 2276352 debug optional libxenmisc4.11-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb d36462152d6d814fef6b1b61909b18a6 469404 libs optional libxenmisc4.11_4.11.4+57-g41a822c392-2_amd64.deb f3c53073f4a26cecf05e81f336f1db79 33784 debug optional libxenstore3.0-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 5a4782ba050e59adb3447e69846db7fd 42320 libs optional libxenstore3.0_4.11.4+57-g41a822c392-2_amd64.deb 09b8d5779bf267b8b1382a1a95ba32f4 5124 debug optional libxentoolcore1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 3801dfb9a814ecaee18db88c54b83d09 32908 libs optional libxentoolcore1_4.11.4+57-g41a822c392-2_amd64.deb e2e2a41cb7ba7194cccd9dfb68e95d85 11328 debug optional libxentoollog1-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 6714dd3de847590670371d67e464be45 34732 libs optional libxentoollog1_4.11.4+57-g41a822c392-2_amd64.deb 8da6d22af7da5427478c59d8646cd8dd 434968 doc optional xen-doc_4.11.4+57-g41a822c392-2_amd64.deb 975e796a81c3d4fa823c4751733747ac 15098880 kernel optional xen-hypervisor-4.11-amd64_4.11.4+57-g41a822c392-2_amd64.deb 7baba87301b75f6dfbbffc20878c92ea 32720 kernel optional xen-hypervisor-common_4.11.4+57-g41a822c392-2_all.deb 72c734d2149705e4905fcfcdc33fb1a4 30856 admin optional xen-system-amd64_4.11.4+57-g41a822c392-2_amd64.deb a8dce0a3cc1b9f56c8ec9a389d3b2582 1066004 debug optional xen-utils-4.11-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb ef2fd1b2926846a1bc79d57c6c45cf03 7146160 admin optional xen-utils-4.11_4.11.4+57-g41a822c392-2_amd64.deb 5524161882c961925a48a55eaff22f61 259620 debug optional xen-utils-common-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb d4d8940fd7da1718fa4a467814c0a5aa 276180 admin optional xen-utils-common_4.11.4+57-g41a822c392-2_amd64.deb c83bbbdc88fd06f28b16fab133d1edfa 18111 admin optional xen_4.11.4+57-g41a822c392-2_amd64.buildinfo c5b682633b02310ba78df90f126c095e 19876 debug optional xenstore-utils-dbgsym_4.11.4+57-g41a822c392-2_amd64.deb 446a9c2329671e46f019045679439bdd 46080 admin optional xenstore-utils_4.11.4+57-g41a822c392-2_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl/XmcoACgkQEMKTtsN8 Tja1PRAApOM4g6kHuXsNYbSqgjv8WlKHcoUvCItsQy2HrRovL1Zn6AekkA5I9a3y 8Qqt83l1n1nsq5ZobXa1DzajoAqj9VJBh3wE0HjuSH1BEo3su300ttKxIFfB8JMe IBtqptw1psr0+og5jqA7UGCEFIYYObi9K170+AKw1PQ0gxJwaPF+H03Q9JQD9dLB 9AJCbQg6zSqv4SH+GIyr5jVqAUr8vEfzxnW+4jouieFicZHrj5KgneDTjlQYqzO+ bZ6vaty/ijUG6sFFcewfSXsbC4iG2+HwPsfiDcXBVVHKEIdFpHy97aR5xfAT/WiF oCgPolLS1zxKn0rnjfXr0t4ZGBpBD9wRoWRjWk3A4XxPa/6vt/rvoVuqdeM1IBCO 2Ue5XUhb2+npd+wpPbrziqY+FST8ow38RLcXrgK8H/SmiFuhoElZucz8A79iMABy odDVMQnWazj2qrNnPDZUGPUawfgG67ipMljwAYz+I3YHxHCYrpkHF52cicipJC9Q ccDYRhWIinugHNHXRdE8tsOzytHI9mssbluOJoBhQkfPpG0AE0FbU/h41Qr/6f/R 95aX6NLf+z79gDqPy1C4bKmg4/VrraxtjJ/cNQy1U+dPO/VpU7Faa9JcsMPhj66v G3c7Nn965x5fH1nurimXQ6kHSDhZvhbzNAL3/3zpkgQEwawyfqE= =ctGY -----END PGP SIGNATURE-----