- Wed May 15 2019 tv <tv> 4.12.0-2.mga7
+ Revision: 1397871
- Microarchitectural Data Sampling speculative side channel [XSA-297,
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091]
- additional patches so above applies cleanly - Sun Apr 14 2019 tv <tv> 4.12.0-1.mga7
+ Revision: 1389949
- reeable i586 but disable cross compiling hypervisor for now
- fix filelist for aarch64
- temporary disable i586
- update to 4.12.0
- remove patches for issues now fixed upstream
- replace xen.use.fedora.ipxe.patch with --with-system-ipxe
- drop xen.glibcfix.patch xen.gcc8.temp.fix.patch which are no longer needed
- rediff patches
- xen.hypervisor.config refresh
- kdd is now xen-kdd, xenmon.py is now xenmon, fsimage.so is now xenfsimage.so
fs libdir is now xenfsimage libdir
- xen-ringwatch xen-bugtool have been dropped
- remove remaining traces of efiming and efi_flags logic
- switch from python2 to python3 - Wed Mar 6 2019 tv <tv> 4.11.1-1.mga7
+ Revision: 1372036
- enable to disable building docs
- update to 4.11.1
- construct ovmf.bin from edk2-ovmf package (rhbz#1656651)
- xen: various flaws (rhbz#1685577)
grant table transfer issues on large hosts [XSA-284]
race with pass-through device hotplug [XSA-285]
x86: steal_page violates page_struct access discipline [XSA-287]
x86: Inconsistent PV IOMMU discipline [XSA-288]
missing preemption in x86 PV page table unvalidation [XSA-290]
x86/PV: page type reference counting issue with failed IOMMU update [XSA-291]
x86: insufficient TLB flushing when using PCID [XSA-292]
x86: PV kernel context switch corruption [XSA-293]
x86 shadow: Insufficient TLB flushing when using PCID [XSA-294]
remove patches for issues now fixed upstream
adjust xen.use.fedora.ipxe.patch - Thu Nov 22 2018 tv <tv> 4.11.0-9.mga7
+ Revision: 1333165
- insufficient TLB flushing / improper large page mappings with AMD IOMMUs
[XSA-275] (#1651665)
- x86: DoS from attempting to use INVPCID with a non-canonical addresses
[XSA-279] (#1651970)
- xen: various flaws (#1652251)
resource accounting issues in x86 IOREQ server handling [XSA-276]
x86: incorrect error handling for guest p2m page removals [XSA-277]
Fix for XSA-240 conflicts with shadow paging [XSA-280] - Wed Nov 7 2018 tv <tv> 4.11.0-8.mga7
+ Revision: 1328822
- guest use of HLE constructs may lock up host [XSA-282] - Sat Nov 3 2018 pterjan <pterjan> 4.11.0-7.mga7
+ Revision: 1327850
- Only require grub on architectures where it exists
- Kill old Requires on glibc-xen - Tue Oct 30 2018 tv <tv> 4.11.0-6.mga7
+ Revision: 1326740
- x86: Nested VT-x usable even when disabled [XSA-278, CVE-2018-18883] (rhbz#1643118) - Thu Oct 25 2018 wally <wally> 4.11.0-5.mga7
+ Revision: 1325485
- fix build on i586
- update file list for arm/aarch64
+ daviddavid
- rebuild for new ocaml 4.07.1
+ tv
- set /usr/bin/python2 at the start of another python script
- reenable EFI images now that we've fixed binutils
- BR libfdt-devel on arm - Thu Sep 13 2018 tv <tv> 4.11.0-2.mga7
+ Revision: 1258876
- temporary unlist missing efi images
- set properly libexecdir on ix86
- sync patches with FC
- fix build on ix86
- 4.11.0
- replace use of deprecated brctl command (rhbz#1588712)
- Speculative register leakage from lazy FPU context switching - Thu May 31 2018 tv <tv> 4.10.1-2.mga7
+ Revision: 1233265
- fix build with glibc 2.27
- Speculative Store Bypass [XSA-263, CVE-2018-3639]
(with extra patches so it applies cleanly) - Wed May 9 2018 tv <tv> 4.10.1-1.mga7
+ Revision: 1227910
- 4.10.1
- make doc noarch - Thu Feb 1 2018 tv <tv> 4.10.0-2.mga7
+ Revision: 1198465
- try harder to have a cross build for ix86
- fix ix86 build
- sync patches with FC
- new release - Tue Jun 20 2017 tmb <tmb> 4.6.5-2.mga6
+ Revision: 1107965
- fix XSA-216 to XSA-225 - Sun Jun 4 2017 tmb <tmb> 4.6.5-1.mga6
+ Revision: 1106636
- sync with Fedora 4.6.5-6 (fixes all security issues up to XSA-215)
