Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

xen-libs-4.19.0-4.fc42 RPM for x86_64

From Fedora Rawhide for x86_64 / x

Name: xen-libs Distribution: Fedora Project
Version: 4.19.0 Vendor: Fedora Project
Release: 4.fc42 Build date: Tue Sep 24 17:54:25 2024
Group: Unspecified Build host: buildhw-x86-05.iad2.fedoraproject.org
Size: 1968799 Source RPM: xen-4.19.0-4.fc42.src.rpm
Packager: Fedora Project
Url: http://xen.org/
Summary: Libraries for Xen tools
 
This package contains the libraries needed to run applications
which manage Xen virtual machines.

Provides

Requires

License

GPL-2.0-or-later AND LicenseRef-Callaway-LGPLv2+ AND LicenseRef-Callaway-BSD

Changelog

* Tue Sep 24 2024 Michael Young <m.a.young@durham.ac.uk> - 4.19.0-4
  - x86: Deadlock in vlapic_error() [XSA-462, CVE-2024-45817]
* Wed Sep 04 2024 Miroslav Suchý <msuchy@redhat.com> - 4.19.0-3
  - convert license to SPDX
* Wed Aug 14 2024 Michael Young <m.a.young@durham.ac.uk> - 4.19.0-2
  - error handling in x86 IOMMU identity mapping [XSA-460, CVE-2024-31145]
  - PCI device pass-through with shared resources [XSA-461, CVE-2024-31146]
* Sat Aug 03 2024 Michael Young <m.a.young@durham.ac.uk> - 4.19.0-1
  - update to xen-4.19.0
    rebase xen.fedora.systemd.patch, xen.efi.build.patch
    xen.ocaml5.fixes.patch and xen.gcc14.fixes.patch
    remove patches now included or superceded upstream
    now need to enable systemd explicitly 
    xentrace_format has gone, pygrub is now only in /usr/libexec/xen/bin/
    package xenwatchdogd.8.gz
    use relative links for /usr/bin/qemu-system-i386
* Sat Jul 20 2024 Fedora Release Engineering <releng@fedoraproject.org> - 4.18.2-5
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Tue Jul 16 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.2-4
  - double unlock in x86 guest IRQ handling [XSA-458, CVE-2024-31143]
  	(#2298690)
* Fri Jun 07 2024 Python Maint <python-maint@redhat.com> - 4.18.2-3
  - Rebuilt for Python 3.13
* Mon Jun 03 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.2-2
  - x86: Native Branch History Injection [XSA-456 version 3, CVE-2024-2201]
* Tue Apr 09 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.2-1
  - x86: Native Branch History Injection [XSA-456, CVE-2024-2201]
  - update to xen 4.18.2, remove patches now included upstream
* Tue Apr 09 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.1-2
  - x86 HVM hypercalls may trigger Xen bug check [XSA-454, CVE-2023-46842]
  - x86: Incorrect logic for BTC/SRSO mitigations [XSA-455, CVE-2024-31142]
* Wed Mar 20 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.1-1
  - update to xen-4.18.1
    rebase xen.gcc12.fixes.patch
    remove patches now included or superceded upstream
* Wed Mar 13 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.0-7
  - x86: Register File Data Sampling [XSA-452, CVE-2023-28746]
  - GhostRace: Speculative Race Conditions [XSA-453, CVE-2024-2193]
  - additional patches so above applies cleanly
* Tue Feb 27 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.0-6
  - x86: shadow stack vs exceptions from emulation stubs - [XSA-451,
  	CVE-2023-46841] (#2266326)
* Sun Feb 04 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.0-5
  - pci: phantom functions assigned to incorrect contexts [XSA-449,
          CVE-2023-46839]
  - VT-d: Failure to quarantine devices in !HVM build [XSA-450,
          CVE-2023-46840]
  - the glibc32 doesn't seem to add anything to the build so drop it
* Sat Feb 03 2024 Michael Young <m.a.young@durham.ac.uk> - 4.18.0-4
  - build fixes for gcc14, replace stubs-32.h requirement with glibc32
* Sat Jan 27 2024 Fedora Release Engineering <releng@fedoraproject.org> - 4.18.0-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Dec 13 2023 Michael Young <m.a.young@durham.ac.uk> - 4.18.0-2
  - arm32: The cache may not be properly cleaned/invalidated (take two)
  	[XSA-447, CVE-2023-46837]
  - rebuild for OCaml-5.1.1
* Wed Nov 29 2023 Michael Young <m.a.young@durham.ac.uk> - 4.18.0-1
  - update to xen-4.18.0
    rebase xen.canonicalize.patch and xen.ocaml5.fixes.patch
    remove or adjust patches now included or superceded upstream
  - xencons has been dropped
* Tue Nov 14 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-5
  - x86/AMD: mismatch in IOMMU quarantine page table levels [XSA-445,
  	CVE-2023-46835]
  - x86: BTC/SRSO fixes not fully effective [XSA-446, CVE-2023-46836]
* Tue Oct 10 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-4
  - xenstored: A transaction conflict can crash C Xenstored [XSA-440,
  	CVE-2023-34323]
  - x86/AMD: missing IOMMU TLB flushing [XSA-442, CVE-2023-34326]
  - Multiple vulnerabilities in libfsimage disk handling [XSA-443,
  	CVE-2023-34325]
  - x86/AMD: Debug Mask handling [XSA-444, CVE-2023-34327,
  	CVE-2023-34328]
* Sun Oct 08 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-3
  - rebuild (f40) for OCaml 5.1
* Tue Sep 26 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-2
  - arm32: The cache may not be properly cleaned/invalidated [XSA-437,
  	CVE-2023-34321]
  - top-level shadow reference dropped too early for 64-bit PV guests
  	[XSA-438, CVE-2023-34322]
  - x86/AMD: Divide speculative information leak [XSA-439, CVE-2023-20588]
* Thu Aug 10 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-1
  - update to xen-4.17.2 which includes
    x86/AMD: Speculative Return Stack Overflow [XSA-434, CVE-2023-20569]
    x86/Intel: Gather Data Sampling [XSA-435, CVE-2022-40982]
  - remove patches now included upstream
* Tue Aug 01 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-9
  - arm: Guests can trigger a deadlock on Cortex-A77 [XSA-436, CVE-2023-34320]
  	(#2228238)
* Mon Jul 31 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-8
  - bugfix for x86/AMD: Zenbleed [XSA-433, CVE-2023-20593]
* Tue Jul 25 2023 Michael Young <m.a.young@durham.ac.uk>
  - adjust OCaml patch condition so eln builds work
* Mon Jul 24 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-7
  - x86/AMD: Zenbleed [XSA-433, CVE-2023-20593]
  - omit OCaml 5 patch on fc38
* Sat Jul 22 2023 Fedora Release Engineering <releng@fedoraproject.org> - 4.17.1-6
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Mon Jul 10 2023 Jerry James <loganjerry@gmail.com> - 4.17.1-5
  - Add patch for OCaml 5.0.0
* Tue Jun 27 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-4
  - work around a build problem with python 3.12
* Tue Jun 13 2023 Python Maint <python-maint@redhat.com> - 4.17.1-3
  - Rebuilt for Python 3.12
* Tue May 16 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-2
  - Mishandling of guest SSBD selection on AMD hardware
  	[XSA-431, CVE-2022-42336]
* Tue May 02 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-1
  - update to xen-4.17.1
    remove patches now included upstream
    switch from patchN to patch N format for applying patches
* Tue Apr 25 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-9
  - x86 shadow paging arbitrary pointer dereference [XSA-430, CVE-2022-42335]
* Tue Mar 21 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-8
  - 3 security issues (#2180425)
    x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332]
    x86/HVM pinned cache attributes mis-handling [XSA-428, CVE-2022-42333,
  	CVE-2022-42334]
    x86: speculative vulnerability in 32bit SYSCALL path [XSA-429,
  	CVE-2022-42331]
* Sat Feb 18 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-7
  - use OVMF.fd from new edk2-ovmf-xen package as ovmf.bin file
  	built from edk2-ovmf package no longer supports xen (#2170930)
* Tue Feb 14 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-6
  - x86: Cross-Thread Return Address Predictions [XSA-426, CVE-2022-27672]
* Wed Jan 25 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-5
  - Guests can cause Xenstore crash via soft reset [XSA-425, CVE-2022-42330]
  	(#2164520)
* Tue Jan 24 2023 Michael Young <m.a.young@durham.ac.uk>
  - now need BuildRequires for hostname
* Sat Jan 21 2023 Fedora Release Engineering <releng@fedoraproject.org> - 4.17.0-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Tue Jan 17 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-3
  - build fix for gcc13
* Sun Jan 08 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-2
  - fix clean up of init scripts if /etc/rc.d/init.d doesn't exist
* Tue Dec 20 2022 Michael Young <m.a.young@durham.ac.uk>
  -  python3-setuptools BuildRequires is needed for python 3.12
* Tue Dec 13 2022 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-1
  - update to xen-4.17.0
    rebase xen.fedora.systemd.patch and xen.canonicalize.patch
    remove or adjust patches now included or superceded upstream
    /var/lib/xenstored has moved to /run/xenstored
* Tue Nov 08 2022 Michael Young <m.a.young@durham.ac.uk> - 4.16.2-4
  - x86: Multiple speculative security issues [XSA-422, CVE-2022-23824]
* Tue Nov 01 2022 Michael Young <m.a.young@durham.ac.uk> - 4.16.2-3
  - x86: unintended memory sharing between guests [XSA-412, CVE-2022-42327]
  - Xenstore: Guests can crash xenstored [XSA-414, CVE-2022-42309]
  - Xenstore: Guests can create orphaned Xenstore nodes [XSA-415,
  	CVE-2022-42310]
  - Xenstore: guests can let run xenstored out of memory [XSA-326,
  	CVE-2022-42311, CVE-2022-42312, CVE-2022-42313, CVE-2022-42314,
  	CVE-2022-42315, CVE-2022-42316, CVE-2022-42317, CVE-2022-42318]
  - Xenstore: Guests can cause Xenstore to not free temporary memory
  	[XSA-416, CVE-2022-42319]
  - Xenstore: Guests can get access to Xenstore nodes of deleted domains
  	[XSA-417, CVE-2022-42320]
  - Xenstore: Guests can crash xenstored via exhausting the stack
  	[XSA-418, CVE-2022-42321]
  - Xenstore: Cooperating guests can create arbitrary numbers of nodes
  	[XSA-419, CVE-2022-42322, CVE-2022-42323]
  - Oxenstored 32->31 bit integer truncation issues [XSA-420, CVE-2022-42324]
  - Xenstore: Guests can create arbitrary number of nodes via transactions
  	[XSA-421, CVE-2022-42325, CVE-2022-42326]
* Fri Oct 14 2022 Michael Young <m.a.young@durham.ac.uk> - 4.16.2-2
  - Arm: unbounded memory consumption for 2nd-level page tables [XSA-409,
  	CVE-2022-33747] (#2135268)
  - P2M pool freeing may take excessively long [XSA-410, CVE-2022-33746]
  	(#2135641)
  - lock order inversion in transitive grant copy handling [XSA-411,
  	CVE-2022-33748] (#2135263)

Files

/usr/lib/.build-id
/usr/lib/.build-id/01
/usr/lib/.build-id/01/873290548d9669a903287e12c82d123181ed55
/usr/lib/.build-id/17
/usr/lib/.build-id/17/68861384d903f73bb13cb64fccca51df154d37
/usr/lib/.build-id/1b
/usr/lib/.build-id/1b/222de8174f9339dda0b2ae4dfd18da3e11b65d
/usr/lib/.build-id/22
/usr/lib/.build-id/22/b2707cdd77859c5618044f39b139c57ca6420a
/usr/lib/.build-id/30
/usr/lib/.build-id/30/0551e538b996572b77a36391655a22f4e82e77
/usr/lib/.build-id/33
/usr/lib/.build-id/33/88bb878209f3814ca043c47908a689bd2e6976
/usr/lib/.build-id/38
/usr/lib/.build-id/38/d302d71e0f26c56b673cbd04b836119f6ebc74
/usr/lib/.build-id/3a
/usr/lib/.build-id/3a/0b6908855c6becc62b2f8f2d687ccb0b29a174
/usr/lib/.build-id/42
/usr/lib/.build-id/42/324d880fb47c35f506897dd0e8c0354da7c988
/usr/lib/.build-id/4b
/usr/lib/.build-id/4b/371c0eb1d6028e6851444c39f42a554d0cf9a6
/usr/lib/.build-id/53
/usr/lib/.build-id/53/2b38d761658f541e367a72b33055521c73d031
/usr/lib/.build-id/6a
/usr/lib/.build-id/6a/ca3d4d35c111a1f7c94f8ee711bd4344a65c9f
/usr/lib/.build-id/71
/usr/lib/.build-id/71/1b93b15d39362291065b314285fffcaf1d102a
/usr/lib/.build-id/91
/usr/lib/.build-id/91/0c6e6c9cd66260d7a5373b73ebe363f44f8ece
/usr/lib/.build-id/99
/usr/lib/.build-id/99/7de99fa4d690bb1513fd4791d6e77a1e909e67
/usr/lib/.build-id/a9
/usr/lib/.build-id/a9/0e1028cb4c981b2d3eee28873ad33d7a2ae0e2
/usr/lib/.build-id/ba
/usr/lib/.build-id/ba/2a97ab7baa5c83c94e3b93db7aa6fe22fa0be0
/usr/lib/.build-id/da
/usr/lib/.build-id/da/77021fbba8456cde5fe303b39484dcd8ce3b2e
/usr/lib/.build-id/dc
/usr/lib/.build-id/dc/a49d7e543fa09355c820040f5105ed2e4b41c2
/usr/lib/.build-id/f4
/usr/lib/.build-id/f4/ec2ce037f2aa0f761e3bc8fa03c26ab0df5f83
/usr/lib/.build-id/f7
/usr/lib/.build-id/f7/313bbab04e065e3ab1e3d3da9fcb9d7a0439c7
/usr/lib/.build-id/ff
/usr/lib/.build-id/ff/506744b4922f58dbbd71ac93f73a458b754bd0
/usr/lib/.build-id/ff/78fd7b4179b9f1adb8c93207687de2d1c9461c
/usr/lib64/libxencall.so.1
/usr/lib64/libxencall.so.1.3
/usr/lib64/libxenctrl.so.4.19
/usr/lib64/libxenctrl.so.4.19.0
/usr/lib64/libxendevicemodel.so.1
/usr/lib64/libxendevicemodel.so.1.4
/usr/lib64/libxenevtchn.so.1
/usr/lib64/libxenevtchn.so.1.2
/usr/lib64/libxenforeignmemory.so.1
/usr/lib64/libxenforeignmemory.so.1.4
/usr/lib64/libxenfsimage.so.4.19
/usr/lib64/libxenfsimage.so.4.19.0
/usr/lib64/libxengnttab.so.1
/usr/lib64/libxengnttab.so.1.2
/usr/lib64/libxenguest.so.4.19
/usr/lib64/libxenguest.so.4.19.0
/usr/lib64/libxenhypfs.so.1
/usr/lib64/libxenhypfs.so.1.0
/usr/lib64/libxenlight.so.4.19
/usr/lib64/libxenlight.so.4.19.0
/usr/lib64/libxenstat.so.4.19
/usr/lib64/libxenstat.so.4.19.0
/usr/lib64/libxenstore.so.4
/usr/lib64/libxenstore.so.4.0
/usr/lib64/libxentoolcore.so.1
/usr/lib64/libxentoolcore.so.1.0
/usr/lib64/libxentoollog.so.1
/usr/lib64/libxentoollog.so.1.0
/usr/lib64/libxenvchan.so.4.19
/usr/lib64/libxenvchan.so.4.19.0
/usr/lib64/libxlutil.so.4.19
/usr/lib64/libxlutil.so.4.19.0
/usr/lib64/xenfsimage
/usr/lib64/xenfsimage/ext2fs-lib
/usr/lib64/xenfsimage/ext2fs-lib/fsimage.so
/usr/lib64/xenfsimage/fat
/usr/lib64/xenfsimage/fat/fsimage.so
/usr/lib64/xenfsimage/iso9660
/usr/lib64/xenfsimage/iso9660/fsimage.so
/usr/lib64/xenfsimage/reiserfs
/usr/lib64/xenfsimage/reiserfs/fsimage.so
/usr/lib64/xenfsimage/ufs
/usr/lib64/xenfsimage/ufs/fsimage.so
/usr/lib64/xenfsimage/xfs
/usr/lib64/xenfsimage/xfs/fsimage.so
/usr/lib64/xenfsimage/zfs
/usr/lib64/xenfsimage/zfs/fsimage.so

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 5 02:05:27 2024