xen-4.17.5-3.fc39 RPM for x86_64

From Fedora 39 testing updates for x86_64 / Packages / x

This package contains the XenD daemon and xm command line
tools, needed to manage virtual machines running under the
Xen hypervisor

Provides

• xen
• config(xen)
• python3.12dist(xen)
• python3dist(xen)
• xen(x86-64)

Requires

• /bin/sh
• /bin/sh
• /usr/bin/python3
• config(xen) = 4.17.5-3.fc39
• iproute
• kpartx
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.38)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libxenctrl.so.4.17()(64bit)
• libxenctrl.so.4.17(VERS_4.17.0)(64bit)
• libxenguest.so.4.17()(64bit)
• libxenguest.so.4.17(VERS_4.17.0)(64bit)
• libxenstore.so.4()(64bit)
• libxenstore.so.4(VERS_4.0)(64bit)
• python(abi) = 3.12
• python3-lxml
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PartialHardlinkSets) <= 4.0.4-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)
• systemd
• systemd
• xen-runtime = 4.17.5-3.fc39

License

GPLv2+ and LGPLv2+ and BSD

Changelog

* Wed Nov 13 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.5-3
  - Deadlock in x86 HVM standard VGA handling [XSA-463, CVE-2024-45818]
  - libxl leaks data to PVH guests via ACPI tables [XSA-464, CVE-2024-45819]
* Tue Sep 24 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.5-2
  - x86: Deadlock in vlapic_error() [XSA-462, CVE-2024-45817] (#2314782)
* Sat Sep 14 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.5-1
  - update to xen-4.17.5
    remove or adjust patches now included or superceded upstream
    now need to enable systemd explicitly
* Thu Aug 15 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.4-3
  - error handling in x86 IOMMU identity mapping [XSA-460, CVE-2024-31145]
  	(#2314784)
  - PCI device pass-through with shared resources [XSA-461, CVE-2024-31146]
  	(#2314783)
* Tue Jul 16 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.4-2
  - x86: Native Branch History Injection [XSA-456 version 3, CVE-2024-2201]
  - double unlock in x86 guest IRQ handling [XSA-458, CVE-2024-31143]
  	(#2298690)
* Tue Apr 09 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.4-1
  - x86: Native Branch History Injection [XSA-456, CVE-2024-2201]
  - update to xen 4.17.4, remove patches now included upstream
    rebase xen.gcc12.fixes.patch
  - x86 HVM hypercalls may trigger Xen bug check [XSA-454, CVE-2023-46842]
  - x86: Incorrect logic for BTC/SRSO mitigations [XSA-455, CVE-2024-31142]
* Thu Mar 14 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-8
  - x86: Register File Data Sampling [XSA-452, CVE-2023-28746]
  - GhostRace: Speculative Race Conditions [XSA-453, CVE-2024-2193]
  - additional patches so above applies cleanly
* Tue Feb 27 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-7
  - x86: shadow stack vs exceptions from emulation stubs - [XSA-451,
          CVE-2023-46841] (#2266326)
* Tue Jan 30 2024 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-6
  - arm32: The cache may not be properly cleaned/invalidated (take two)
  	[XSA-447, CVE-2023-46837]
  - pci: phantom functions assigned to incorrect contexts [XSA-449,
  	CVE-2023-46839]
  - VT-d: Failure to quarantine devices in !HVM build [XSA-450,
  	CVE-2023-46840]
* Tue Nov 14 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-5
  - x86/AMD: mismatch in IOMMU quarantine page table levels [XSA-445,
  	CVE-2023-46835]
  - x86: BTC/SRSO fixes not fully effective [XSA-446, CVE-2023-46836]
* Tue Oct 10 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-4
  - xenstored: A transaction conflict can crash C Xenstored [XSA-440,
  	CVE-2023-34323]
  - x86/AMD: missing IOMMU TLB flushing [XSA-442, CVE-2023-34326]
  - Multiple vulnerabilities in libfsimage disk handling [XSA-443,
  	CVE-2023-34325]
  - x86/AMD: Debug Mask handling [XSA-444, CVE-2023-34327,
  	CVE-2023-34328]
* Sun Oct 08 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-3
  - rebuild (f40) for OCaml 5.1
* Tue Sep 26 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-2
  - arm32: The cache may not be properly cleaned/invalidated [XSA-437,
  	CVE-2023-34321]
  - top-level shadow reference dropped too early for 64-bit PV guests
  	[XSA-438, CVE-2023-34322]
  - x86/AMD: Divide speculative information leak [XSA-439, CVE-2023-20588]
* Thu Aug 10 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.2-1
  - update to xen-4.17.2 which includes
    x86/AMD: Speculative Return Stack Overflow [XSA-434, CVE-2023-20569]
    x86/Intel: Gather Data Sampling [XSA-435, CVE-2022-40982]
  - remove patches now included upstream
* Tue Aug 01 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-9
  - arm: Guests can trigger a deadlock on Cortex-A77 [XSA-436, CVE-2023-34320]
  	(#2228238)
* Mon Jul 31 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-8
  - bugfix for x86/AMD: Zenbleed [XSA-433, CVE-2023-20593]
* Tue Jul 25 2023 Michael Young <m.a.young@durham.ac.uk>
  - adjust OCaml patch condition so eln builds work
* Mon Jul 24 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-7
  - x86/AMD: Zenbleed [XSA-433, CVE-2023-20593]
  - omit OCaml 5 patch on fc38
* Sat Jul 22 2023 Fedora Release Engineering <releng@fedoraproject.org> - 4.17.1-6
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Mon Jul 10 2023 Jerry James <loganjerry@gmail.com> - 4.17.1-5
  - Add patch for OCaml 5.0.0
* Tue Jun 27 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-4
  - work around a build problem with python 3.12
* Tue Jun 13 2023 Python Maint <python-maint@redhat.com> - 4.17.1-3
  - Rebuilt for Python 3.12
* Tue May 16 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-2
  - Mishandling of guest SSBD selection on AMD hardware
  	[XSA-431, CVE-2022-42336]
* Tue May 02 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.1-1
  - update to xen-4.17.1
    remove patches now included upstream
    switch from patchN to patch N format for applying patches
* Tue Apr 25 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-9
  - x86 shadow paging arbitrary pointer dereference [XSA-430, CVE-2022-42335]
* Tue Mar 21 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-8
  - 3 security issues (#2180425)
    x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332]
    x86/HVM pinned cache attributes mis-handling [XSA-428, CVE-2022-42333,
  	CVE-2022-42334]
    x86: speculative vulnerability in 32bit SYSCALL path [XSA-429,
  	CVE-2022-42331]
* Sat Feb 18 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-7
  - use OVMF.fd from new edk2-ovmf-xen package as ovmf.bin file
  	built from edk2-ovmf package no longer supports xen (#2170930)
* Tue Feb 14 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-6
  - x86: Cross-Thread Return Address Predictions [XSA-426, CVE-2022-27672]
* Wed Jan 25 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-5
  - Guests can cause Xenstore crash via soft reset [XSA-425, CVE-2022-42330]
  	(#2164520)
* Tue Jan 24 2023 Michael Young <m.a.young@durham.ac.uk>
  - now need BuildRequires for hostname
* Sat Jan 21 2023 Fedora Release Engineering <releng@fedoraproject.org> - 4.17.0-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Tue Jan 17 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-3
  - build fix for gcc13
* Sun Jan 08 2023 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-2
  - fix clean up of init scripts if /etc/rc.d/init.d doesn't exist
* Tue Dec 20 2022 Michael Young <m.a.young@durham.ac.uk>
  -  python3-setuptools BuildRequires is needed for python 3.12
* Tue Dec 13 2022 Michael Young <m.a.young@durham.ac.uk> - 4.17.0-1
  - update to xen-4.17.0
    rebase xen.fedora.systemd.patch and xen.canonicalize.patch
    remove or adjust patches now included or superceded upstream
    /var/lib/xenstored has moved to /run/xenstored

Files

/etc/sysconfig/xendomains
/etc/xen/auto
/usr/bin/xencons
/usr/lib/.build-id
/usr/lib/.build-id/8f
/usr/lib/.build-id/8f/c5dfd4616bb1d039cb05530ac2f71e7b973da3
/usr/lib/.build-id/f2
/usr/lib/.build-id/f2/132304d15bbda1ddc39c4ec4600bab9653e759
/usr/lib/systemd/system/xendomains.service
/usr/lib64/python3.12/site-packages/xen
/usr/lib64/python3.12/site-packages/xen-3.0-py3.12.egg-info
/usr/lib64/python3.12/site-packages/xen-3.0-py3.12.egg-info/PKG-INFO
/usr/lib64/python3.12/site-packages/xen-3.0-py3.12.egg-info/SOURCES.txt
/usr/lib64/python3.12/site-packages/xen-3.0-py3.12.egg-info/dependency_links.txt
/usr/lib64/python3.12/site-packages/xen-3.0-py3.12.egg-info/top_level.txt
/usr/lib64/python3.12/site-packages/xen/__init__.py
/usr/lib64/python3.12/site-packages/xen/__pycache__
/usr/lib64/python3.12/site-packages/xen/__pycache__/__init__.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/__pycache__/__init__.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/__pycache__/util.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/__pycache__/util.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/lowlevel
/usr/lib64/python3.12/site-packages/xen/lowlevel/__init__.py
/usr/lib64/python3.12/site-packages/xen/lowlevel/__pycache__
/usr/lib64/python3.12/site-packages/xen/lowlevel/__pycache__/__init__.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/lowlevel/__pycache__/__init__.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/lowlevel/xc.cpython-312-x86_64-linux-gnu.so
/usr/lib64/python3.12/site-packages/xen/lowlevel/xs.cpython-312-x86_64-linux-gnu.so
/usr/lib64/python3.12/site-packages/xen/migration
/usr/lib64/python3.12/site-packages/xen/migration/__init__.py
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/__init__.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/__init__.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/legacy.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/legacy.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/libxc.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/libxc.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/libxl.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/libxl.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/public.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/public.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/tests.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/tests.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/verify.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/verify.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/xl.cpython-312.opt-1.pyc
/usr/lib64/python3.12/site-packages/xen/migration/__pycache__/xl.cpython-312.pyc
/usr/lib64/python3.12/site-packages/xen/migration/legacy.py
/usr/lib64/python3.12/site-packages/xen/migration/libxc.py
/usr/lib64/python3.12/site-packages/xen/migration/libxl.py
/usr/lib64/python3.12/site-packages/xen/migration/public.py
/usr/lib64/python3.12/site-packages/xen/migration/tests.py
/usr/lib64/python3.12/site-packages/xen/migration/verify.py
/usr/lib64/python3.12/site-packages/xen/migration/xl.py
/usr/lib64/python3.12/site-packages/xen/util.py
/usr/share/doc/xen
/usr/share/doc/xen/COPYING
/usr/share/doc/xen/README

Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Nov 16 03:43:20 2024