-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 09 May 2022 22:29:23 +0200 Source: xen Architecture: source Version: 4.16.1-1 Distribution: unstable Urgency: medium Maintainer: Debian Xen Team <pkg-xen-devel@lists.alioth.debian.org> Changed-By: Hans van Kranenburg <hans@knorrie.org> Closes: 962267 Changes: xen (4.16.1-1) unstable; urgency=medium . * Update to new upstream version 4.16.1, which also contains security fixes for the following issues: - Racy interactions between dirty vram tracking and paging log dirty hypercalls XSA-397 CVE-2022-26356 - Multiple speculative security issues XSA-398 (no CVE yet) - race in VT-d domain ID cleanup XSA-399 CVE-2022-26357 - IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues XSA-400 CVE-2022-26358 CVE-2022-26359 CVE-2022-26360 CVE-2022-26361 * Note that the following XSA are not listed, because... - XSA-396 has patches for the Linux kernel. * Don't ship NEWS in libxen* packages. Instead, only ship relevant NEWS items for actual hypervisor and/or utils packages they belong to. (Closes: #962267) * d/control: make xen-hypervisor-common arch specific, just like xen-utils-common. * d/control: stop recommending qemu-system-x86 on arm, because qemu is not being built with xen support on arm... * Add a patch for tools/libs/light/Makefile which prevents build.o and build.opic to be rebuilt unneededly during the package install phase, causing a FTBFS because it triggers the use of ccache, which is not allowed in the install phase of building the Debian packages. . Improvements related to Qemu integration: [Michael Tokarev] * d/xen-utils-common.xen.init: properly disable qemu monitor/serial/parallel devices for qemu started at boot. * debian: switch from recommending qemu-system-x86 to qemu-system-xen and mention this change in the NEWS file. * Add patch "give meaningful error message if qemu device model is unavailable" to give a useful error message only in case the domU needs the qemu device model which is not installed, instead of giving a warning about missing qemu even if it is not used by this domain. . Documentation, grammar and spelling fixes and improvements: * d/control: drop obsolete paragraph about separate xen linux kernel package * d/control: Harmonize the capitalization of the 'Xen' word [Diederik de Haas] * d/control: Improve spelling and grammar [Diederik de Haas]` Checksums-Sha1: 11e29ee0ff4c2891cddd68ade7f1faab4d0bf830 4023 xen_4.16.1-1.dsc 0659f2c9468c74fa0941746b5e07fb441cf91d17 4551484 xen_4.16.1.orig.tar.xz 757fc8879a07e9642301907f611389abc717c93a 130964 xen_4.16.1-1.debian.tar.xz Checksums-Sha256: ac4103e03c877a44f94fa538860144e0b2ade80bf2a9090c01fb6bc059ed1075 4023 xen_4.16.1-1.dsc 97bc9ebe9aa5e36b359f99257e0bff02d0deb7238ddbc16ee8c9e48dcb1f6165 4551484 xen_4.16.1.orig.tar.xz d4508c72e0c73269db13e2cf19ec07f6364b511d0ffa7e19268583198d66a845 130964 xen_4.16.1-1.debian.tar.xz Files: 66310f2452d455d9f75845b123c99e29 4023 admin optional xen_4.16.1-1.dsc e3608b606d74fc54bf8e6bf6c5387bf4 4551484 admin optional xen_4.16.1.orig.tar.xz 7e36b5be0fcbebd989cfa3dae7b69eb5 130964 admin optional xen_4.16.1-1.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEESWyddwNaG9637koYssHfcmNhX2wFAmJ5jqQACgkQssHfcmNh X2yaEQ//cGHyQYBBlRMp6fjt41lNXWoLuKnd10uTbKAcW6jF93SeSVw+oOMM0o2i aqEU9ha5B082AXIqFjccJH8aFpEzh19snZPiwrYstspKJr89iV6kgvbAfyKJylQ8 eW99RzqWy26m61hJ5ess2o6wIHy/jP+mTekt7/Tj+wV6MXOstWSYo4siSi24f2ru l8maSS7ROhU5kk56FXxsDYuWtFQcP3ZMmQQk892MLpBjkj0MF8gNGGgFKyW596v7 wPACdRDCq/jpoHPn9cgjRhtpj0GshBuo0OLLi7v9tZmufyPW8v5P7J4b7c2zVbrp ThmFwLYxa8kSGzt00uAB0pllf32UI7ODltWr0gzvt+kDhVFhfs7Ubp6mFKkI2S9H QzuhXrGOVpuxoNw0iHdmEc5O66gK2b5FkcXStcsYjku52ZTfO8R/1POKpkfiADIP lDHNcpfcdoG2QiX6ifcUXi4ZRfiMob6Ns/KADMQyzgvcshYSx8KE33gfESfnxYzM g16el2NaBKRDmKDBiA2NoQJr8lCe22mDkcuRfERbLmijOiGXeynNDmBMtsHW7Rw8 fkksk58awWPJMwBXndyqrazGj1m8BGao8tZ6LFjNyzb7KnDDyclwCFqqPdXsXrZo EDbpggRjMC8FoU5nqNBCW4nBHgIZ5G91TU+PnfMvGt65fzboIoE= =3I72 -----END PGP SIGNATURE-----
