-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 04 Nov 2022 20:25:46 +0100 Source: xen Binary: libxen-dev libxencall1 libxencall1-dbgsym libxendevicemodel1 libxendevicemodel1-dbgsym libxenevtchn1 libxenevtchn1-dbgsym libxenforeignmemory1 libxenforeignmemory1-dbgsym libxengnttab1 libxengnttab1-dbgsym libxenhypfs1 libxenhypfs1-dbgsym libxenmisc4.14 libxenmisc4.14-dbgsym libxenstore3.0 libxenstore3.0-dbgsym libxentoolcore1 libxentoolcore1-dbgsym libxentoollog1 libxentoollog1-dbgsym xen-doc xen-hypervisor-4.14-amd64 xen-hypervisor-common xen-system-amd64 xen-utils-4.14 xen-utils-4.14-dbgsym xen-utils-common xen-utils-common-dbgsym xenstore-utils xenstore-utils-dbgsym Architecture: source amd64 all Version: 4.14.5+86-g1c354767d5-1 Distribution: bullseye-security Urgency: medium Maintainer: Debian Xen Team <pkg-xen-devel@lists.alioth.debian.org> Changed-By: Hans van Kranenburg <hans@knorrie.org> Description: libxen-dev - Public headers and libs for Xen libxencall1 - Xen runtime library - libxencall libxendevicemodel1 - Xen runtime libraries - libxendevicemodel libxenevtchn1 - Xen runtime libraries - libxenevtchn libxenforeignmemory1 - Xen runtime libraries - libxenforeignmemory libxengnttab1 - Xen runtime libraries - libxengnttab libxenhypfs1 - Xen runtime library - libxenhypfs libxenmisc4.14 - Xen runtime libraries - miscellaneous, versioned ABI libxenstore3.0 - Xen runtime libraries - libxenstore libxentoolcore1 - Xen runtime libraries - libxentoolcore libxentoollog1 - Xen runtime libraries - libxentoollog xen-doc - XEN documentation xen-hypervisor-4.14-amd64 - Xen Hypervisor on AMD64 xen-hypervisor-common - Xen Hypervisor - common files xen-system-amd64 - Xen System on AMD64 (metapackage) xen-utils-4.14 - XEN administrative tools xen-utils-common - Xen administrative tools - common files xenstore-utils - Xenstore command line utilities for Xen Closes: 1021668 Changes: xen (4.14.5+86-g1c354767d5-1) bullseye-security; urgency=medium . * Update to new upstream version 4.14.5+86-g1c354767d5, which also contains security fixes for the following issues: (Closes: #1021668) - Xenstore: guests can let run xenstored out of memory XSA-326 CVE-2022-42311 CVE-2022-42312 CVE-2022-42313 CVE-2022-42314 CVE-2022-42315 CVE-2022-42316 CVE-2022-42317 CVE-2022-42318 - insufficient TLB flush for x86 PV guests in shadow mode XSA-408 CVE-2022-33745 - Arm: unbounded memory consumption for 2nd-level page tables XSA-409 CVE-2022-33747 - P2M pool freeing may take excessively long XSA-410 CVE-2022-33746 - lock order inversion in transitive grant copy handling XSA-411 CVE-2022-33748 - Xenstore: Guests can crash xenstored XSA-414 CVE-2022-42309 - Xenstore: Guests can create orphaned Xenstore nodes XSA-415 CVE-2022-42310 - Xenstore: Guests can cause Xenstore to not free temporary memory XSA-416 CVE-2022-42319 - Xenstore: Guests can get access to Xenstore nodes of deleted domains XSA-417 CVE-2022-42320 - Xenstore: Guests can crash xenstored via exhausting the stack XSA-418 CVE-2022-42321 - Xenstore: Cooperating guests can create arbitrary numbers of nodes XSA-419 CVE-2022-42322 CVE-2022-42323 - Oxenstored 32->31 bit integer truncation issues XSA-420 CVE-2022-42324 - Xenstore: Guests can create arbitrary number of nodes via transactions XSA-421 CVE-2022-42325 CVE-2022-42326 * The upstream Xen changes now also contain the first mentioned patch of XSA-403 ("Linux disk/nic frontends data leaks") for stable branch lines. For more information, please refer to the XSA-403 advisory text. * Note that the following XSA are not listed, because... - XSA-412 only applies to Xen 4.16 and newer - XSA-413 applies to XAPI which is not included in Debian * Correct a typo in the previous changelog entry. Checksums-Sha1: 909d77502fa7468fe59f86282d849a200b42a55e 4124 xen_4.14.5+86-g1c354767d5-1.dsc 2bdb70aa5515dd0c23e3ddbfc11c32631baee47a 4398188 xen_4.14.5+86-g1c354767d5.orig.tar.xz 542c7fc0cd6a9bdb97f13a7ed9ddfaa27632eac7 143664 xen_4.14.5+86-g1c354767d5-1.debian.tar.xz 71f483385eb0613e0c2d580f74a8ef06f98fe0bd 787456 libxen-dev_4.14.5+86-g1c354767d5-1_amd64.deb e138f8f250f2485515f9e7ec257896357555521b 13496 libxencall1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 6bd3651eeeddbcecafbe72bbcc05f49708624385 38932 libxencall1_4.14.5+86-g1c354767d5-1_amd64.deb 8a0dd0763b0503eb769e4a6ea9c56a4ba1097c97 17564 libxendevicemodel1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 0fe5b379b486c86c364a9efd75748da329ccbefc 39720 libxendevicemodel1_4.14.5+86-g1c354767d5-1_amd64.deb 185f455ce0948bea76e3214d2bce8587c9385885 7956 libxenevtchn1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 82e3b17624e699007349866f57b11b53712a2977 37292 libxenevtchn1_4.14.5+86-g1c354767d5-1_amd64.deb e8e6766673600e3be5a4fcbeec75fe3887ce6203 12316 libxenforeignmemory1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 3f2dd2aca7e978bdeb1c24d3e3214c6f2e33601c 39200 libxenforeignmemory1_4.14.5+86-g1c354767d5-1_amd64.deb 4616f7321fe3cbac541d0a9a4493567ffdae90b7 16416 libxengnttab1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb df8dfee437cc1f4c6aa2a4860c71a44ee10f87da 39716 libxengnttab1_4.14.5+86-g1c354767d5-1_amd64.deb 3f768afaf33572c67dca3b4e2b4ea6348d0cdd9b 11848 libxenhypfs1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 9e1db6ea99a9481157e330d54ed16740baaaf3c8 39264 libxenhypfs1_4.14.5+86-g1c354767d5-1_amd64.deb f18b210e12d9c867128137dbe3b4a6a59d0c7d42 2388484 libxenmisc4.14-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 629b3406b3774f82c4df37fba7e40a7f61989b71 510648 libxenmisc4.14_4.14.5+86-g1c354767d5-1_amd64.deb 74e6d2cae373325da5671cbc3619fffb91630cf8 34080 libxenstore3.0-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 4153f69240407069497ee4f672e601696947f95c 46064 libxenstore3.0_4.14.5+86-g1c354767d5-1_amd64.deb 3d034174d7e03bab1a43bd2d76a65194bd0c029b 5476 libxentoolcore1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb bec035fd4dfc06353f3e11becb4967b60d1e1e40 36740 libxentoolcore1_4.14.5+86-g1c354767d5-1_amd64.deb 1f7473d7c7d9cfac082ad16c7aea28e79e63c90a 10892 libxentoollog1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 61fe1da582e554c9de35ef769117fac940455255 38584 libxentoollog1_4.14.5+86-g1c354767d5-1_amd64.deb 8a8f3131e1f2af52e8dce3407d42d1e02f88e99b 492672 xen-doc_4.14.5+86-g1c354767d5-1_amd64.deb 4b65d47db68503a8115bcca0705184e572ec3e2e 3544208 xen-hypervisor-4.14-amd64_4.14.5+86-g1c354767d5-1_amd64.deb a590a5176a42838eb814858c06b1730216e74c90 36828 xen-hypervisor-common_4.14.5+86-g1c354767d5-1_all.deb 17a3c0e3225c393a78689801f81906e333fb691a 34644 xen-system-amd64_4.14.5+86-g1c354767d5-1_amd64.deb f65762ea005955f405aea64db144ea1b1b499f64 1132948 xen-utils-4.14-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb eb27cf9c2ed7a27951a82a5c2b553bde01b9b979 5340728 xen-utils-4.14_4.14.5+86-g1c354767d5-1_amd64.deb 4fe3ed7b9d3590302bf095ddb21d0333d0428031 264368 xen-utils-common-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb c58a6f8b7281d35fcb3b2a528153458929232086 275344 xen-utils-common_4.14.5+86-g1c354767d5-1_amd64.deb 4e176375694309b470f09dec6f4c66f545b9c4b7 19330 xen_4.14.5+86-g1c354767d5-1_amd64.buildinfo 4d1fd5d27536763b0d164da245c806a1538d2e9f 20532 xenstore-utils-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 07e863437611ae125a7d0a635b87174c36936f1e 54176 xenstore-utils_4.14.5+86-g1c354767d5-1_amd64.deb Checksums-Sha256: 293d5524bf85a5fb3befccd6de4ff310e86e871270e1841b89826e12639522a5 4124 xen_4.14.5+86-g1c354767d5-1.dsc da9e6d3ea3881db40bc09968ab7f5e65926bc144f65519ed9c18b918fc0ce5ba 4398188 xen_4.14.5+86-g1c354767d5.orig.tar.xz 1032e8cafde0c51608f0b0b2c9b5568022fd443dd8e099ee878d7af417fb0524 143664 xen_4.14.5+86-g1c354767d5-1.debian.tar.xz b2ecd24771a4cdaf230cfab540680d94ca4499841513ab2d92e4c60017c9d197 787456 libxen-dev_4.14.5+86-g1c354767d5-1_amd64.deb 3a361051d677e8130d4bb8db591884cdad372d6268bb367af842a139c32b26a0 13496 libxencall1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 4ce1fda7127c92bb7456daae084d1537075ba165ae277a938550ed6df050fd77 38932 libxencall1_4.14.5+86-g1c354767d5-1_amd64.deb c5da46271575478b9356147c3e2631ee182551846a05f348c0431ecf3135c6b1 17564 libxendevicemodel1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 939a82eb1a66894606558f89c12d2e06a4281bac5963c77c4dbf33cfcebb55a6 39720 libxendevicemodel1_4.14.5+86-g1c354767d5-1_amd64.deb 42a858c3e622bdbe399423e928d46e206850e6626d21b2d763ab30789c00729c 7956 libxenevtchn1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 0733fa570271f1a98255133eaab41cb39c056ecce1babab85b9ce44ea111e326 37292 libxenevtchn1_4.14.5+86-g1c354767d5-1_amd64.deb fda0fa5ff8850615f6cba8db30b61d1af34f02b1539532465e37a43b76acd656 12316 libxenforeignmemory1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 113c0270ede114f3b7b46baad5bfa21280f5f3d4056cfeef32964ae78b7f9618 39200 libxenforeignmemory1_4.14.5+86-g1c354767d5-1_amd64.deb 7f6d5899ab3ca6cd40000fae79361f3791e32d0f8d667c03a240dc1913887b0d 16416 libxengnttab1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 92edaf23952c15cb99683a8fc08ce8ca2babb76166107d682e3a4cb8e9ecb28f 39716 libxengnttab1_4.14.5+86-g1c354767d5-1_amd64.deb 83ad0905e4b764971146fe3a878373766a2310068416b73b5b38cbb6011d3a7b 11848 libxenhypfs1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb d19d6c2ee87cbccf49cd3aa4651045b479a18a3457147b5d440bc841fc7e75d5 39264 libxenhypfs1_4.14.5+86-g1c354767d5-1_amd64.deb 3b6966016db82f61f8b2acb6fa66effe89137437b2abc3a9520578ecfd3a4248 2388484 libxenmisc4.14-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 2938f77bfbac2203a401ee49a1d0bf7e2bcbf411e4644b6447fe7af6d8baf8f2 510648 libxenmisc4.14_4.14.5+86-g1c354767d5-1_amd64.deb 29c4592863082f0f4d013961d0cd9429c18e330655d220ae4535622a686e9aa6 34080 libxenstore3.0-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 10e6d2e0cb18f4d19ff32ce39c93f204f46da077de2d78217ada6ba2fbad6ce4 46064 libxenstore3.0_4.14.5+86-g1c354767d5-1_amd64.deb 602e995312481f8254537979bf2da2675feb20f4f5374c8cdf247d4f39fd2ef6 5476 libxentoolcore1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 7420fe87dfaa248ad8c630afa29c52c1d1e6943e7781dd828c435f35cafbb439 36740 libxentoolcore1_4.14.5+86-g1c354767d5-1_amd64.deb cd1584173fc6ac1eb13b13824b007116944c084225fbdbe6c64966798b469d52 10892 libxentoollog1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 8b391f6831e2bb00f8980c74f3b68ed8c1e6600af36b9d953ae46c39aa5c1348 38584 libxentoollog1_4.14.5+86-g1c354767d5-1_amd64.deb 9ba8090cd13eb4754d3c340a749a437d689e052b7d0ed0c6e6dbd272e0c54ca4 492672 xen-doc_4.14.5+86-g1c354767d5-1_amd64.deb 794759d09c3f86d1d627f1d3bdc0f9242b8db4b9cbdd2c7376a058ac791c6f0f 3544208 xen-hypervisor-4.14-amd64_4.14.5+86-g1c354767d5-1_amd64.deb 0403c30f5f9e2e96bc39a7359607debced0bc4ef3cfde8dfc9ad720b519a781d 36828 xen-hypervisor-common_4.14.5+86-g1c354767d5-1_all.deb 1cdc74cc37e77a41b6e94125a9169d6d894dbca8c7d4255b9aa6a9fb90b55810 34644 xen-system-amd64_4.14.5+86-g1c354767d5-1_amd64.deb 81b5419663e23a0ac5439ef2bdfb77e60fa9cc1fa7974ba459c04ce0709dbec6 1132948 xen-utils-4.14-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb c51889cb3d1a7c131837fe0ccf3b34e6888d950212e39f83a63a80042c5c5f90 5340728 xen-utils-4.14_4.14.5+86-g1c354767d5-1_amd64.deb 74d07592f558b5f9e318b3de639b3d62af966c53cfbd47995e6577c178739a5d 264368 xen-utils-common-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 6cc99d654e3a889d0973d416d363c2fbf3a2dc2c3250d515c56fd5cdcda974c6 275344 xen-utils-common_4.14.5+86-g1c354767d5-1_amd64.deb 14824d4ca0f96509e5808aad8b4192cd2f91a744bd4b365f55746ff6e6ba52ed 19330 xen_4.14.5+86-g1c354767d5-1_amd64.buildinfo bd0dd50d8958eb82346391ee7aa7710a9ba90c4930c7cadc86f8aa0f48bddf31 20532 xenstore-utils-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb d5e003e8ebfca3f661ee2d60416f6bdf1169ffead313a8a506df25b5f3d1615d 54176 xenstore-utils_4.14.5+86-g1c354767d5-1_amd64.deb Files: fb0c7d4d71cb10ea5ff3144fdb103644 4124 admin optional xen_4.14.5+86-g1c354767d5-1.dsc 9818a4667d5137deffac803905e9f202 4398188 admin optional xen_4.14.5+86-g1c354767d5.orig.tar.xz 7a9f270ff696053e8aa94fe2fc978656 143664 admin optional xen_4.14.5+86-g1c354767d5-1.debian.tar.xz 3911e4ef3dffaa89dea817aaa23ac24c 787456 libdevel optional libxen-dev_4.14.5+86-g1c354767d5-1_amd64.deb 795635668c75764e65d92b1d8332ac0c 13496 debug optional libxencall1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb d2a5ce3f903ba35f9b13508db6525768 38932 libs optional libxencall1_4.14.5+86-g1c354767d5-1_amd64.deb 3d86245c460f829d230e789aa731b9be 17564 debug optional libxendevicemodel1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 44d2c7dd069efe16dc263e1093830f3b 39720 libs optional libxendevicemodel1_4.14.5+86-g1c354767d5-1_amd64.deb b642857bd62440b6ce53e5a8ab26b2c2 7956 debug optional libxenevtchn1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb a7386cab3016df38c420f98a0dce1829 37292 libs optional libxenevtchn1_4.14.5+86-g1c354767d5-1_amd64.deb b42dbd2ae042d19634506e6691ccc8de 12316 debug optional libxenforeignmemory1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 5b201be566a8e292d0175ef6255f9a2a 39200 libs optional libxenforeignmemory1_4.14.5+86-g1c354767d5-1_amd64.deb 32b525be26d74dbd314ca2ef0e1818ad 16416 debug optional libxengnttab1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb e4169c76416f75d5d0f8f55dd1359f01 39716 libs optional libxengnttab1_4.14.5+86-g1c354767d5-1_amd64.deb cd17c88545684fbb85752f5a6eb60895 11848 debug optional libxenhypfs1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 2af6b5f1002f65553f39371e0700cead 39264 libs optional libxenhypfs1_4.14.5+86-g1c354767d5-1_amd64.deb 94b03214f2caff5a6c4383da52b5a545 2388484 debug optional libxenmisc4.14-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb 986a2617b71cf8a1d250b2caa3e34f14 510648 libs optional libxenmisc4.14_4.14.5+86-g1c354767d5-1_amd64.deb 3dbeceb020d77dbe5d51ad1403b52a7f 34080 debug optional libxenstore3.0-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb c9dca4843f31c38efb736cb3c4ed0b32 46064 libs optional libxenstore3.0_4.14.5+86-g1c354767d5-1_amd64.deb bfb1fb6b31e0bf3b6af74839e4d37393 5476 debug optional libxentoolcore1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb d23f25c6bab947d4ed06d3697432cc6d 36740 libs optional libxentoolcore1_4.14.5+86-g1c354767d5-1_amd64.deb 6634be52f88b5cdbe20f99f8fbe91a26 10892 debug optional libxentoollog1-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb a5232480b1ea7e84b36aa9a2226f4a46 38584 libs optional libxentoollog1_4.14.5+86-g1c354767d5-1_amd64.deb f524f876d8bee45acef7289bb4934eb0 492672 doc optional xen-doc_4.14.5+86-g1c354767d5-1_amd64.deb d9168a12e72ef601f5f476f182563831 3544208 kernel optional xen-hypervisor-4.14-amd64_4.14.5+86-g1c354767d5-1_amd64.deb b5d3f2fe8179dd950602187e16b057ec 36828 kernel optional xen-hypervisor-common_4.14.5+86-g1c354767d5-1_all.deb ee88246a92e6974a9d0b587401169612 34644 admin optional xen-system-amd64_4.14.5+86-g1c354767d5-1_amd64.deb 31fec999397daf37071635deb2a45beb 1132948 debug optional xen-utils-4.14-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb d350686e0ea8da20672416b25702b1d2 5340728 admin optional xen-utils-4.14_4.14.5+86-g1c354767d5-1_amd64.deb 344a919a91a54a975c287e69d825dbae 264368 debug optional xen-utils-common-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb efe5517c4c70c28f7287a703f22bf5f4 275344 admin optional xen-utils-common_4.14.5+86-g1c354767d5-1_amd64.deb 8e9b33c165e0caf87b11f88f57e092d7 19330 admin optional xen_4.14.5+86-g1c354767d5-1_amd64.buildinfo 0c29ebccb447b67ae63e627bb70803d2 20532 debug optional xenstore-utils-dbgsym_4.14.5+86-g1c354767d5-1_amd64.deb d663a5769b45a009f0bb46427686b158 54176 admin optional xenstore-utils_4.14.5+86-g1c354767d5-1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmNmrdgACgkQEMKTtsN8 TjbYIRAAu2fYJealCSxb/D9ADw1zLRJLmwGVbefmfn6jwIOEPKtCeJ/T9Gsov2bZ GmKJQ51QwheYMP3j3gyBhX1IugG1yoBDRYCQ/GRSA3DJj/3yrC6ClLAa22RM47Ay byLgixUlktDPPp2zHtQRrmqWF1ahE5WsVm8+Hwb40MH4hdHekB/tFt0KC4vay9PG 2VI34pGEsSCcEbSuuhABMuozGcp5aHBwL38zEHmTp8kGYZxW0nHfBxleeEVc2Cpf zoKq582ZOIt/GIAaLER/lF7qD2+J5kNjALEVTYy5Jg5RF8RuQbHaDI/CMvbF1+ke Dg5qjI000MRH+dUMHGj53m2WMk2BWqDe3+G7kBYWCn3IGA//nb7hHUKUKlai4fMB l9UQRgAEZ5CDiemBYn04k5fBU9K63qvU1dhJKwfkn8d2By5CUfKqj9a9mUF5T7y7 HMb6EyeMIQxJntD1QnxSDIBSTxasIRKInTWYyJLIy6OphsFwpUnSb1Uihx2VJfUE wY+iJo1peRAuwHCL1bvs8lAPlT76hzlrxYZ2ics7cNAoq4UnewKizawU7sASxN30 yuUOM9liSKbg33qXGZB0mP1TyLEKbavQsWaicLO3byMzk6FHzO6k4GI7pvpbtigh rkzIsvirqUY5WNb1IQ8iboBp0OpbUSiJNLnB2RnE95lBc9p8wKE= =1aTa -----END PGP SIGNATURE-----