-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 07 Feb 2018 17:50:45 +0000 Source: xen Binary: libxen-4.8 libxenstore3.0 libxen-dev xenstore-utils xen-utils-common xen-utils-4.8 xen-hypervisor-4.8-amd64 xen-system-amd64 xen-hypervisor-4.8-arm64 xen-system-arm64 xen-hypervisor-4.8-armhf xen-system-armhf Architecture: all amd64 source Version: 4.8.3+comet2+shim4.10.0+comet3-1+deb9u4 Distribution: stretch-security Urgency: high Maintainer: Debian Xen Team <pkg-xen-devel@lists.alioth.debian.org> Changed-By: Ian Jackson <ijackson@chiark.greenend.org.uk> Description: libxen-4.8 - Public libs for Xen libxen-dev - Public headers and libs for Xen libxenstore3.0 - Xenstore communications library for Xen xen-hypervisor-4.8-amd64 - Xen Hypervisor on AMD64 xen-hypervisor-4.8-arm64 - Xen Hypervisor on ARM64 xen-hypervisor-4.8-armhf - Xen Hypervisor on ARMHF xen-system-amd64 - Xen System on AMD64 (meta-package) xen-system-arm64 - Xen System on ARM64 (meta-package) xen-system-armhf - Xen System on ARMHF (meta-package) xen-utils-4.8 - XEN administrative tools xen-utils-common - Xen administrative tools - common files xenstore-utils - Xenstore command line utilities for Xen Changes: xen (4.8.3+comet2+shim4.10.0+comet3-1+deb9u4) stretch-security; urgency=high . * Update to new upstream version 4.8.3+comet2+shim4.10.0+comet3. Specifically, this is two upstreams: - Upstream Xen 4.8.3 "git merge"d with upstream Xen Security Team (XSA-254) 4.8.3pre-shim-comet-2, in `.' - Upstream Xen 4.10.0-shim-comet-3 in `shim'. The upstream tarballs are from `git archive' with the gitattributes for mangling .gitarchive-info disabled. Therefore, we include these security fixes: XSA-254 CVE-2017-5754 but SP3 "Meltdown" only XSA-253 CVE-2018-5244 XSA-251 CVE-2017-17565 XSA-250 CVE-2017-17564 XSA-249 CVE-2017-17563 XSA-248 CVE-2017-17566 * Ship README.pti and README.comet from the upstream XSA-254 advisory in /usr/share/doc/xen-utils/common/. Checksums-Sha1: 46ed5a38373a92f07bcb29d1ee8c8b42287f9c56 3173 xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4.dsc 3c46c0d6f02cd08b5759ea4185befeb9232f5400 5950245 xen_4.8.3+comet2+shim4.10.0+comet3.orig-shim.tar.gz e83f44575ac8ced082e9eb83a187a649c98b56cc 5573566 xen_4.8.3+comet2+shim4.10.0+comet3.orig.tar.gz 22026370bd82131b8ca01bf9f94bfe249645eda9 54440 xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4.debian.tar.xz 41b3e200baee2d05ccc5b04b8030959f2d0cd94b 1616704 libxen-4.8-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb b39143fa4abf008a251ded63dd43161838c30655 413798 libxen-4.8_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 9750786c559fa8728a81b4960079af694ba09d9b 652916 libxen-dev_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 54c01721791a5fd46ff97d2e56006b3cf9a55a54 25248 libxenstore3.0-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 493b2e91051fbd124470ea1fec228af0742b22c4 33424 libxenstore3.0_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 813918a5030739f27db5e935bb61dfda6c938211 2275382 xen-hypervisor-4.8-amd64_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 308c43d5b8f3e55a4233eb542266e2decccd53e4 22388 xen-system-amd64_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 41ad0a4123b3733ea87192bebbd7d7e89344353c 849546 xen-utils-4.8-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 62b0dcaa1606d64bab1810510e0140ab0a77c4f1 421418 xen-utils-4.8_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 0e65f65c5e7ade27a0c95524d2b8f3d13e89d770 284126 xen-utils-common_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_all.deb 16ef18123451b68477db5d3aac019dc781014b8b 11940 xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.buildinfo 2ff333998d5d8e82760f2ae8b9b62a269441a8ed 13366 xenstore-utils-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 6fbc66ba8275d750fa2abe31e304fd6affc340c5 29130 xenstore-utils_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb Checksums-Sha256: 736ecec57e666aba983a5399328e24fd698104d5a6f55acacd7f4351a07c1209 3173 xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4.dsc a165ac3bd64c10a1f6eb05e8c6e8ee7d648a746b4cd8521fd18c043f7d939364 5950245 xen_4.8.3+comet2+shim4.10.0+comet3.orig-shim.tar.gz a17aede203aed0b58af49347f6c17d365235e0629d13357aad33ab860a87936d 5573566 xen_4.8.3+comet2+shim4.10.0+comet3.orig.tar.gz 8da8d6ef93da367c093a2c06e92b74a18b48ad5d78de2b9c01adc8feffb42780 54440 xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4.debian.tar.xz b57456432d7b8d15914d44805f2ff2b2dbda38bc5f3ae695ecefe213d8d9e2af 1616704 libxen-4.8-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 6773b9965a0269ec38f31cddec9f7dc68b0bbe915e97db8d360a0649783bf164 413798 libxen-4.8_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb febbd201ebca16ec4c67e5342a8efecd74029750a8fcf3735c24d67f4bafa076 652916 libxen-dev_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb ca38dad9a9fc6b591a05ac07fe907c3385518965057107968d5bbad54de920db 25248 libxenstore3.0-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb a6bfa22c67e1c54f1faf83cd8093ee84e81ba6aa5b8e3dda95b8822046bafaec 33424 libxenstore3.0_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 20475901d533540c13c9676dc8bd3c26c326ea9cd040b791413a4c7017637db7 2275382 xen-hypervisor-4.8-amd64_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 90bfc02ac2d7a60a00b74f945cef105c8d9f4bb4d3f411bf321d5858236872a5 22388 xen-system-amd64_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb de8058402178bbbcc1238e0afca4e30fe68cafd794f9447b5a2323d624ce09b2 849546 xen-utils-4.8-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 596386bf30ca1ab6c276bb23dfa1dc2a1a21f4130e5347fd9093a522353e13a7 421418 xen-utils-4.8_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 131de2683bc646e427ae4f524e02ea1c83402501805462e3222bfbd9fbe94e9a 284126 xen-utils-common_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_all.deb 507cd0968c7da94d3ffda7b02237d09d55dc859fd1d63da13421cef3e0e7a546 11940 xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.buildinfo 5d3e797b5e59558a927e1e8a0b6bbd3dafc71cc66e8c3f0a1d1eb7784fef03d1 13366 xenstore-utils-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 4e226fa6e8fc0a8f03bdcd8a74636cc2cd895209978940c7fdc66f3a069d5982 29130 xenstore-utils_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb Files: a16ab6b461d26a1075f8e49d03fbbe30 3173 kernel optional xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4.dsc f5e0c50eb4d1498e16d3d4b6c227646a 5950245 kernel optional xen_4.8.3+comet2+shim4.10.0+comet3.orig-shim.tar.gz 579229a50c254c4035a4f98afbab86fd 5573566 kernel optional xen_4.8.3+comet2+shim4.10.0+comet3.orig.tar.gz 30337f0de03ca8e125658a4c848dc8ce 54440 kernel optional xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4.debian.tar.xz ef6d968ee86ddcf634ade806e982d87b 1616704 debug extra libxen-4.8-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 28653ec0e4b29682f9a749fb32d8abe7 413798 libs optional libxen-4.8_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb c5e9e0dc2e66b7c88ecf864bf38f1e0b 652916 libdevel optional libxen-dev_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb bdc97c538a470ea6dd63a812a759fd14 25248 debug extra libxenstore3.0-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb c33dad6872ba2daf033dbb87803117db 33424 libs optional libxenstore3.0_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 01946ba9b6c309ac12d394b94bc5c030 2275382 kernel optional xen-hypervisor-4.8-amd64_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 666edabb92b3036e575e80bf8783da82 22388 kernel optional xen-system-amd64_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 6ad5fa108b54dd1275d95b24a655e58f 849546 debug extra xen-utils-4.8-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 5a651ddf2336f45600922500d13ee45f 421418 kernel optional xen-utils-4.8_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 9b2e89ca648b2fe6ccbda7c645497308 284126 kernel optional xen-utils-common_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_all.deb 59fbe1ed476e201518625277e36cdb92 11940 kernel optional xen_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.buildinfo 7d9713f17442b22f95a60948c64be488 13366 debug extra xenstore-utils-dbgsym_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb 116fdffe466a00d50a6faba178c0b2ec 29130 admin optional xenstore-utils_4.8.3+comet2+shim4.10.0+comet3-1+deb9u4_amd64.deb -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEVZrkbC1rbTJl58uh4+M5I0i1DTkFAlp7QuAACgkQ4+M5I0i1 DTk+8wf/dFLU3tQDmJMHnSIBRjffMFn7nyrMGARs25mwwgxbjgeA0OVASaVBVyG/ l8Uq6K3PaXdn234FIaiYFk2CdrKMvMlpTfdYMZEl37N1YVobXPB9jfDF3dNCRIZL ZZ25i6+yCS8EYsBD4spysHc36EnN4YdvML6xHxxG17JzJa0SDAhJpp26aIZartIG vTwRPdn0dtFJdCg/DEOu64IDxxOCDpALbl6wz0/fBswht1AbSlSvg7Ju61qb5CDz rHXUXqquWBKxFK+UJLEqzQaj/2/hh0AlNdgWDmmv9wVIvIgQkgrwEPD9yz9U/gPh b7KUMMChWWgy+wlzeGVnnZLC8xsMyQ== =CZTl -----END PGP SIGNATURE-----