[Oraclevm-errata] OVMBA-2016-0132 Oracle VM 3.4 xen bug fix update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Thu Sep 22 12:20:15 PDT 2016


Oracle VM Bug Fix Advisory OVMBA-2016-0132

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
xen-4.4.4-105.el6.x86_64.rpm
xen-tools-4.4.4-105.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/xen-4.4.4-105.el6.src.rpm



Description of changes:

[4.4.4-105.el6]
- BUILDINFO: commit=617712bfc04e04aba1606f61e1ef6bac7b557464
- evtchn-fifo: prevent use after free (Boris Ostrovsky)  [Orabug: 24581056]

[4.4.4-104.el6]
- BUILDINFO: commit=cce4d21467237fd4f1ba47cd4ac1aa51277c440e
- x86/segment: Bounds check accesses to emulation ctxt->seg_reg[] 
(Andrew Cooper)  [Orabug: 24561443]
- x86/shadow: Avoid overflowing sh_ctxt->seg_reg[] (Andrew Cooper) 
[Orabug: 24561443]
- x86/32on64: don't allow recursive page tables from L3 (Jan Beulich) 
[Orabug: 24561413]

[4.4.4-103.el6]
- BUILDINFO: commit=3bbc1e4f4cd8ad473365f4d4abca4f542020bad5
- x86/hvm: don't intercept #UD exceptions in general (Konrad Rzeszutek 
Wilk)  [Orabug: 24385487]

[4.4.4-102.el6]
- BUILDINFO: commit=3e694971b628b4178dbdc907f0090ba0dc99fc6d
- tools/hotplug/Linux/block: handle the missing $XENBUS_PATH/params case 
(Zhigang Wang)  [Orabug: 24482311]

[4.4.4-101.el6]
- BUILDINFO: commit=e63aa9e8d75ca5700bf3433264b1306f23f84ccb
- libxl, hotplug/Linux: default to phy backend for raw format file, take 
2 (Wei Liu)  [Orabug: 24476310]

[4.4.4-100.el6]
- BUILDINFO: commit=e6b6846226827439d26ebe65712e750744bfb1b8
- libxc/x86: set PAGE1GB back for intel policy (Joao Martins)  [Orabug: 
24446405]

[4.4.4-99.el6]
- BUILDINFO: commit=f137fcbd11547c112bc12ca5bad9824b271f697e
- xen/PCI: Allow MMCONFIG above 4GB for SGI UX 300RL (Boris Ostrovsky) 
[Orabug: 24288531]

[4.4.4-98.el6]
- BUILDINFO: commit=6e8721d563734d913e90054dcefa900ea370ee3d
- xend/netif: Add handle to xenstore to avoid inconsistent vif state 
(Joe Jin)  [Orabug: 22954873]
- xend/bootloader: Fix unclosed quotation string lead duplicate xend 
process (Joe Jin)  [Orabug: 24371183]

[4.4.4-97.el6]
- BUILDINFO: commit=458d1c9daca0626a845fa3f5f3b284f9a111cb19
- livepatch: template and irq_stats. (Konrad Rzeszutek Wilk)

[4.4.4-96.el6]
- BUILDINFO: commit=9bb0ea920c40ee32ec47980578cab87b72f1b460
- xend/xm: hide pci device and xm pci-unhide command (Elena Ufimtseva) 
[Orabug: 23749204]
- xen: add support for hiding and unhiding pcie passthrough devices 
(Elena Ufimtseva)  [Orabug: 23749204]

[4.4.4-95.el6]
- BUILDINFO: commit=b3df47a903ca08308ad42034d82545e102d50319
- Config.mk: Rev up to 'stable-4.4' in qemu-xen (Konrad Rzeszutek Wilk) 
   {CVE-2016-3712} {CVE-2014-3672}
- Fix in network configuration scripts to allow addition/removal of 
disconnected links to/from a bridge. (Sergei Garbuzov)  [Orabug: 23072548]

[4.4.4-94.el6]
- BUILDINFO: commit=48707e53f2a790e8154e854061079ee0677983b0
- Remove unsafe bits from the mod_l?_entry() fastpath (Andrew Cooper) 
{CVE-2016-6258}

[4.4.4-93.el6]
- BUILDINFO: commit=9e86d3fb58d555ebd0f1a0025c8dba07450759f1
- build: disable downloading ipxe tarball from xen.org (Zhigang Wang)

[4.4.4-92.el6]
- BUILDINFO: commit=252a0338d28c144778b51432adfef1546e1703ba
- mm: Don't try to scrub memory if another CPU from the same node is 
already scrubbing (Boris Ostrovsky)

[4.4.4-91.el6]
- BUILDINFO: commit=ba994e0aaa5c7de49dd7af52b2d1ec675e968ce5
- symbols: Generate an xen-sym.map file similar to Linux's (Konrad 
Rzeszutek Wilk)

[4.4.4-90.el6]
- BUILDINFO: commit=2094fc64091690c97d17065021041c34d6bd1497
- xm: introduce smt option (Joao Martins)  [Orabug: 21784986]
- xend: add "smt" global option for default (Joao Martins)  [Orabug: 
21784986]
- libxl, xl: add "smt" global option for default (Joao Martins) 
[Orabug: 21784986]
- xl: introduce smt option (Joao Martins)  [Orabug: 21784986]
- libxl: introduce smt field (Joao Martins)  [Orabug: 21784986]
- libxl: cpuid: add guest topology support (Joao Martins)  [Orabug: 
21784986]
- libxl: cpuid: add intel extended topology (Joao Martins)  [Orabug: 
21784986]
- libxl: cpuid: add intel cache core count support (Joao Martins) 
[Orabug: 21784986]
- libxl: remove whitespace on libxl_types.idl (Joao Martins) - libxc: 
avoid clear leaf 0xB on xc_cpuid_set (Joao Martins)  [Orabug: 21784986]
- tools/libxc: Improve efficiency of xc_cpuid_apply_policy() (Andrew 
Cooper)  [Orabug: 21784986]
- xc_cpuid_x86.c: Simplify masking conditions and remove redundant work 
(Zhuo Song)  [Orabug: 21784986]

[4.4.4-89.el6]
- BUILDINFO: commit=605b78ce48349cbf99f7758bd14689d7ab6ac8ef
- x86/boot: create *.lnk files with linker script (Daniel Kiper)

[4.4.4-88.el6]
- BUILDINFO: commit=b5bb10cfec3354f29008c30fe680e1f0aeaa0244
- xen.spec: Build with support for 512 CPUs. (Konrad Rzeszutek Wilk) 
[Orabug: 23550196]

[4.4.4-87.el6]
- BUILDINFO: commit=a99f96b3c7e5eb823712a17b800cd3c2d621b589
- xend: Provide loglevel_max_bytes config parameter (Konrad Rzeszutek 
Wilk) - hvmloader, pci: Don't try to relocate memory if 64-bit BAR is 
bigger than 4GB (Konrad Rzeszutek Wilk)  [Orabug: 23702847]
- hvmloader: don't use AML operations on 64-bit fields (Jan Beulich) 
[Orabug: 23702847]
- hvmloader: fix build with certain iasl versions (Jan Beulich) 
[Orabug: 23702847]
- hvmloader: PA range 0xfc000000-0xffffffff should be UC (Jan Beulich) 
[Orabug: 23702847]
- hvmloader: also cover PCI MMIO ranges above 4G with UC MTRR ranges 
(Jan Beulich)  [Orabug: 23702847]
- Config.mk: Fix qemu-traditional working with 64-bit PCI-devices. 
(Konrad Rzeszutek Wilk)

[4.4.4-86.el6]
- BUILDINFO: commit=0fd5ef3908e55a9cff8a689b42f999230af54315
- Merge remote-tracking branch 'origin/stable-4.4' into ovm-3.4.2 
(Konrad Rzeszutek Wilk)

[4.4.4-85.el6]
- BUILDINFO: commit=76114b1c3f5abc6a3b35c0dd5ed68feae172855e
- domctl: max_mfn_bars parameter to disable or tweak preemption. (Konrad 
Rzeszutek Wilk) - domctl: lower loglevel of XEN_DOMCTL_memory_mapping 
(Tiejun Chen)

[4.4.4-84.el6]
- BUILDINFO: commit=f5b9021352e8e94a9f0026676496688f40ed8faa
- x86/VPMU: support only versions 2 through 4 of architectural 
performance monitoring (Boris Ostrovsky) - Makefile: Copy 
compile.h.replace instead of generating one (Konrad Rzeszutek Wilk)

[4.4.4-83.el6]
- BUILDINFO: commit=858ff6d5c7a175fd54f8140ae2a0ec7eb06d6bda
- xen.spec: Include compile.h in xen-debuginfo (Konrad Rzeszutek Wilk) - 
xend: Support 64-bit BARs. (Bhavesh Davda)  [Orabug: 23620232]

[4.4.4-82.el6]
- BUILDINFO: commit=c23418e66faf2c89f9ac4a360622a589c0f7b1cc
- x86/xsave: enable support for new ISA extensions (Jan Beulich) 
[Orabug: 23550196]

[4.4.4-81.el6]
- BUILDINFO: branch=ovm-3.4.2, cmt=54cb863522140da4271316ebd40a4a8b0a0316a0
- docs/livepatch: Update URL to livepatch-build-tools.git (Konrad 
Rzeszutek Wilk)
- libxenvchan: Change license of header from Lesser GPL v2.1 to BSD 
(Konrad Rzeszutek Wilk)
- xen: Rename of xSplice to livepatch. (Konrad Rzeszutek Wilk)
- pygrub: handle rbd file paths (Joao Martins)  [Orabug: 23271810]

[4.4.4-80.el6]
- p2m: convert p2m rwlock to percpu rwlock (Malcolm Crossley)
- grant_table: convert grant table rwlock to percpu rwlock (Malcolm 
Crossley)
- rwlock: add per-cpu reader-writer lock infrastructure (Malcolm Crossley)
- grant_table: implement grant_table_warn_active_grants() (Vitaly 
Kuznetsov)
- gnttab: clean up gnttab_set_version() (Jan Beulich)
- gnttab: don't silently truncate frame numbers in gnttab_set_version() 
(Jan Beulich)
- gnttab: fix out of range shift count (Jan Beulich)
- gnttab: don't flush the TLB on grant ops for auto-translated guests 
(Roger Pau Monné)
- complete conversion set_bit() -> __cpumask_set_cpu() by 4aaca0e9cd 
(Jan Beulich)
- introduce and use relaxed cpumask bitops (Jan Beulich)
- x86/HVM: batch vCPU wakeups (Jan Beulich)
- x86: suppress event check IPI to MWAITing CPUs (Jan Beulich)
- gnttab: steal maptrack entries from other VCPUs (David Vrabel)
- gnttab: use per-VCPU maptrack free lists (Malcolm Crossley)
- gnttab: make struct grant_mapping private (Jan Beulich)
- gnttab: fix/adjust gnttab_transfer() (Jan Beulich)
- gnttab: simplify page copying/clearing (Jan Beulich)
- gnttab: simplify shared entry v1 vs v2 handling (Jan Beulich)
- gnttab: limit mapcount() looping (Jan Beulich)
- gnttab: eliminate several explicit version checks (Jan Beulich)
- gnttab: make the grant table lock a read-write lock (David Vrabel)
- gnttab: introduce maptrack lock (David Vrabel)
- gnttab: per-active entry locking (David Vrabel)
- adjust assertion in alloc_heap_pages() (Jan Beulich)
- allow domain heap allocations to specify more than one NUMA node (Jan 
Beulich)
- gnttab: fix a printk() format specifier (Jan Beulich)
- grant-table: defer releasing pages acquired in a grant copy (David 
Vrabel)
- grant-table: refactor grant copy to reduce duplicate code (David Vrabel)
- grant-table: use uint16_t consistently for grant copy offset and 
length (David Vrabel)
- xen/grant-table: backport gnttab_need_iommu_mapping() (Joao Martins)
- xen/common: grant-table: only call IOMMU if paging mode translate is 
disabled (Julien Grall)
- introduce gnttab_max_frames and gnttab_max_maptrack_frames command 
line options (Stefano Stabellini)

[4.4.4-79.el6]
- xen.spec: Also build the hypervisor as debug=y (Konrad Rzeszutek Wilk)
- x86/hvm: add per-vcpu evtchn upcalls (Paul Durrant)  [Orabug: 22916310]

[4.4.4-78.el6]
- x86/mtrr: include asm/atomic.h (David Vrabel)
- x86: reintroduce read_unlock() optimization (David Vrabel)
- x86,arm: remove asm/spinlock.h from all architectures (David Vrabel) - 
use ticket locks for spin locks (David Vrabel)
- x86: provide arch_fetch_and_add() (David Vrabel)
- x86: provide add_sized() (David Vrabel)

[4.4.4-77.el6]
- xen.spec: Unset CFLAGS for hypervisor built. (Konrad Rzeszutek Wilk)

[4.4.4-76.el6]
- tools/hotplug/Linux/block: sort losetup -a result with sort -g 
(Zhigang Wang)  [Orabug: 22875089]
- tools/xenstat: handle network interface name in uppercase. (Zhigang 
Wang) - tools/hotplug: fix ocn bridge parsing (Zhigang Wang)  [Orabug: 
22904955]





More information about the Oraclevm-errata mailing list