[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-stable] [PATCH 00/97] Patch Round-up for stable 3.0.1, freeze
|
From: |
Michael Roth |
|
Subject: |
Re: [Qemu-stable] [PATCH 00/97] Patch Round-up for stable 3.0.1, freeze on 2019-04-08 |
|
Date: |
Thu, 04 Apr 2019 16:28:35 -0500 |
|
User-agent: |
alot/0.7 |
Quoting Cole Robinson (2019-04-02 11:22:59)
> On 4/1/19 4:58 PM, Michael Roth wrote:
> > Hi everyone,
> >
> >
> > The following new patches are queued for QEMU stable v3.0.1:
> >
> > https://github.com/mdroth/qemu/commits/stable-3.0-staging
> >
> > The release is planned for 2019-04-11:
> >
> > https://wiki.qemu.org/Planning/3.0
> >
> > Please respond here or CC address@hidden on any patches you
> > think should be included in the release.
> >
> > Note that this update falls outside the normal stable release support
> > window (~1 development cycle), but is being release now since it was
> > delayed from its intended release date.
> >
> > Thanks!
> >
>
> Here's some extra patches we are carrying in Fedora 29
>
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-15746
> 6f2231e9b0 seccomp: use SIGSYS signal instead of killing the thread
> bda08a5764 seccomp: prefer SCMP_ACT_KILL_PROCESS if available
> d0699bd37c configure: require libseccomp 2.2.0
> 70dfabeaa7 seccomp: set the seccomp filter to all threads
>
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-18849
> e58ccf0396 lsi53c895a: check message length value is valid
>
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-6778
> a907458ad8 slirp: check data length while emulating ident function
>
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-18954
> d07945e78e ppc/pnv: check size before data buffer access
>
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-19364
> 5b76ef50f6 9p: write lock path in v9fs_co_open2()
> 5b3c77aa58 9p: take write lock on fid path updates (CVE-2018-19364)
Thank you for the suggestions so far. I've applied these patches and
backed out:
target/xtensa: drop num_[core_]regs from dc232b/dc233c configs
Changes have been pushed to staging tree:
https://github.com/mdroth/qemu/commits/stable-3.0-staging
>
> Thanks,
> Cole
>
- [Qemu-stable] [PATCH 28/97] virtio: update MemoryRegionCaches when guest negotiates features, (continued)
- [Qemu-stable] [PATCH 28/97] virtio: update MemoryRegionCaches when guest negotiates features, Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 61/97] net: drop too large packet early, Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 78/97] hw/s390x: Fix bad mask in time2tod(), Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 48/97] net: ignore packet size greater than INT_MAX, Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 89/97] hw/rdma: another clang compilation fix, Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 91/97] tpm_tis: fix loop that cancels any seizure by a lower locality, Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 31/97] slirp: Add sanity check for str option length, Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 53/97] nbd/server: fix NBD_CMD_CACHE, Michael Roth, 2019/04/01
- [Qemu-stable] [PATCH 74/97] iotests: make 235 work on s390 (and others), Michael Roth, 2019/04/01
- Re: [Qemu-stable] [PATCH 00/97] Patch Round-up for stable 3.0.1, freeze on 2019-04-08, Cole Robinson, 2019/04/02
- Re: [Qemu-stable] [PATCH 00/97] Patch Round-up for stable 3.0.1, freeze on 2019-04-08,
Michael Roth <=
- Re: [Qemu-stable] [Qemu-devel] [PATCH 00/97] Patch Round-up for stable 3.0.1, freeze on 2019-04-08, Philippe Mathieu-Daudé, 2019/04/04