[Oraclevm-errata] OVMBA-2017-0097 Oracle VM 3.4 xen bug fix update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Thu May 11 14:27:37 PDT 2017
Oracle VM Bug Fix Advisory OVMBA-2017-0097
The following updated rpms for Oracle VM 3.4 have been uploaded to the
Unbreakable Linux Network:
x86_64:
xen-4.4.4-115.0.6.el6.x86_64.rpm
xen-tools-4.4.4-115.0.6.el6.x86_64.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/xen-4.4.4-115.0.6.el6.src.rpm
Description of changes:
[4.4.4-115.0.6.el6]
- BUILDINFO: xen commit=2955a959c38186265b287f2c3ecf2e0e0bc86171
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- x86: correct create_bounce_frame (Boris Ostrovsky) [Orabug: 25927739]
- x86: discard type information when stealing pages (Boris Ostrovsky)
[Orabug: 25927669]
- multicall: deal with early exit conditions (Boris Ostrovsky) [Orabug:
25927592]
[4.4.4-115.0.5.el6]
- BUILDINFO: xen commit=d97f0247936cfc8b9b91c23d88c4377fd12a2634
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- cirrus: add blit_is_unsafe call to cirrus_bitblt_cputovideo (Gerd
Hoffmann) [Orabug: 25533541] {CVE-2017-2620} {CVE-2017-2620}
- cirrus: fix oob access issue (CVE-2017-2615) (Li Qiang) [Orabug:
25533433] {CVE-2017-2615} {CVE-2017-2615}
- cirrus/vnc: zap drop bitblit support from console code. (Gerd
Hoffmann) [Orabug: 25718334] {CVE-2016-9603}
- display: cirrus: ignore source pitch value as needed in blit_is_unsafe
(Bruce Rogers) [Orabug: 25533541] {CVE-2017-2620}
- oxenstored: trim history in the frequent_ops function (Thomas Sanders)
[Orabug: 25742326]
- oxenstored transaction conflicts: improve logging (Thomas Sanders)
[Orabug: 25742326]
- oxenstored: don't wake to issue no conflict-credit (Thomas Sanders)
[Orabug: 25742326]
- oxenstored: do not commit read-only transactions (Thomas Sanders)
[Orabug: 25742326]
- oxenstored: allow self-conflicts (Thomas Sanders) [Orabug: 25742326]
- oxenstored: blame the connection that caused a transaction conflict
(Jonathan Davies) [Orabug: 25742326]
- oxenstored: track commit history (Jonathan Davies) [Orabug: 25742326]
- oxenstored: discard old commit-history on txn end (Thomas Sanders)
[Orabug: 25742326]
- oxenstored: only record operations with side-effects in history
(Jonathan Davies) [Orabug: 25742326]
- oxenstored: support commit history tracking (Jonathan Davies)
[Orabug: 25742326]
- oxenstored: add transaction info relevant to history-tracking
(Jonathan Davies) [Orabug: 25742326]
- oxenstored: ignore domains with no conflict-credit (Thomas Sanders)
[Orabug: 25742326]
- oxenstored: handling of domain conflict-credit (Thomas Sanders)
[Orabug: 25742326]
- oxenstored: comments explaining some variables (Thomas Sanders)
[Orabug: 25742326]
- oxenstored: allow compilation prior to OCaml 3.12.0 (Jonathan Davies)
[Orabug: 25742326]
- oxenstored: log request and response during transaction replay
(Jonathan Davies) [Orabug: 25742326]
- oxenstored: replay transaction upon conflict (Jonathan Davies)
[Orabug: 25742326]
- oxenstored: move functions that process simple operations (Jonathan
Davies) [Orabug: 25742326]
- oxenstored: keep track of each transaction's operations (Jonathan
Davies) [Orabug: 25742326]
- oxenstored: refactor request processing (Jonathan Davies) [Orabug:
25742326]
- oxenstored: remove some unused parameters (Jonathan Davies) [Orabug:
25742326]
- oxenstored: refactor putting response on wire (Jonathan Davies)
[Orabug: 25742326]
- oxenstored: add a safe net mechanism for existing ill-behaved clients
(Zheng Li) [Orabug: 25742326]
- oxenstored: only process domain connections that notify us by events
(Zheng Li) [Orabug: 25742326]
- oxenstored: enable domain connection indexing based on eventchn port
(Zheng Li) [Orabug: 25742326]
- oxenstored: use hash table to store socket connections (Zheng Li)
[Orabug: 25742326]
- oxenstored: catch the error when a connection is already deleted
(Zheng Li) [Orabug: 25742326]
- oxenstored: perform a 3-way merge of the quota after a transaction
(Jerome Maloberti) [Orabug: 25742326]
- oxenstored: exempt dom0 from domU node quotas (Vincent Bernardoff)
[Orabug: 25742326]
- mm: Don't check for waiters when scrubbing (Boris Ostrovsky) [Orabug:
25690120]
[4.4.4-115.0.4.el6]
- BUILDINFO: xen commit=41c3f422a0da1574f3ddc8a9f6aa3a3272ec757d
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- memory: properly check guest memory ranges in XENMEM_exchange handling
(Boris Ostrovsky) [Orabug: 25758797] {CVE-2017-7228}
- xenstored: Log when the write transaction rate limit bites (Ian
Jackson) [Orabug: 25742326]
- xenstored: apply a write transaction rate limit (Ian Jackson)
[Orabug: 25742326]
[4.4.4-115.0.3.el6]
- BUILDINFO: xen commit=253d746c92e13e37e6bbfa2848600d52e0274b01
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- xend: do not acquire vm running lock at start after soft_reset
(Zhigang Wang) [Orabug: 25729452] [Orabug: 25779331]
[4.4.4-115.0.2.el6]
- BUILDINFO: xen commit=fb27c720c8a7446c201dc72ec1355f41e1baa9ad
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- xm: Fix the error message displayed by 'xm create ...' (Venu
Busireddy) [Orabug: 25721689]
- xm: expand pci hidden devices tools (Venu Busireddy) [Orabug: 25721611]
- xend: fix vif device ID allocation (Zhigang Wang) [Orabug: 25692157]
[Orabug: 25704937]
[4.4.4-115.0.1.el6]
- BUILDINFO: xen commit=987e6e687b452b710ae88baf78ac000cfea32152
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional
commit=d9ba4c53b14ebf9a0613b5638f90d95489622f0c
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- xend: fix waitForSuspend (Zhigang Wang) [Orabug: 25638583] [Orabug:
25653476]
[4.4.4-115.el6]
- BUILDINFO: xen commit=ba16f81e80d451cae3ebff05b45753a74f9eecff
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- IOMMU: always call teardown callback (Oleksandr Tyshchenko) [Orabug:
25481896]
[4.4.4-114.el6]
- BUILDINFO: xen commit=8c4c94925bdc97113fe59b633637bbb9c3316ea4
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- libxl: return any serial tty path in libxl_console_get_tty (Bob Liu)
[Orabug: 24943293]
- xl: Accept a list for serial in config file (White, Edmund H)
[Orabug: 24943293]
- libxl: Allow multiple serial ports on HVM domain creation (White,
Edmund H) [Orabug: 24943293]
- x86/hvm: do not set msr_tsc_adjust on hvm_set_guest_tsc_fixed (Joao
Martins)
[4.4.4-113.el6]
- BUILDINFO: xen commit=57171bcec8e3e91deda9658a4465fce37dcc8c65
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- x86emul: CMPXCHG8B ignores operand size prefix (Jan Beulich) [Orabug:
25180218]
[4.4.4-112.el6]
- BUILDINFO: xen commit=a66faa9f75c2cb194f91cadba3de0501420c29bf
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- mm: Make scrubbing a low-priority task (Dongli Zhang) [Orabug: 20816669]
[4.4.4-111.el6]
- BUILDINFO: xen commit=f76fb71aee8f5b145060baef9005302e6be189b9
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- x86/emul: Correct the handling of eflags with SYSCALL (Andrew Cooper)
[Orabug: 25291677] {CVE-2016-10013}
- x86: force EFLAGS.IF on when exiting to PV guests (Jan Beulich)
[Orabug: 25235002] {CVE-2016-10024}
[4.4.4-110.el6]
- BUILDINFO: commit=fb8035420d57b6a66825024803198117d0143ab1
- Rombios: large disk support for LBA48 to L-CHS translation (Bhavesh Davda)
[4.4.4-109.el6]
- BUILDINFO: commit=2bf7de2bdebe4231d3c04ca0b4ceca4c00767f4e
- pygrub: Properly quote results, when returning them to the caller:
(Ian Jackson) [Orabug: 25064245]
- x86emul: fix huge bit offset handling (Jan Beulich) [Orabug: 25064081]
- x86/PV: writes of %fs and %gs base MSRs require canonical addresses
(Jan Beulich) [Orabug: 25063963]
- x86/HVM: don't load LDTR with VM86 mode attrs during task switch (Jan
Beulich) [Orabug: 25063885]
- x86/hvm: Fix the handling of non-present segments (Andrew Cooper)
[Orabug: 25063804]
[4.4.4-108.el6]
- BUILDINFO: commit=92415590fb4ac8d69585aa50b4830ccd82084da3
- libxl: Remove redundant setting of phyical-device (George Dunlap)
[Orabug: 24478760]
[4.4.4-107.el6]
- BUILDINFO: commit=631b03738b1e5e8c39593426fc9a07f350eb1735
- x86/hvm: extend HVM cpuid leaf with vcpu id (Paul Durrant) - x86/hvm:
add HVM-specific hypervisor CPUID leaf (Boris Ostrovsky) - xend:
soft_reset support. (Konrad Rzeszutek Wilk) - (lib)xl: soft reset
support (Vitaly Kuznetsov) - tools/libxl: Save and restore
EMULATOR_XENSTORE_DATA content (Andrew Cooper) [Orabug: 19807079]
- libxl: introduce libxl__device_model_xs_path (Wei Liu) - libxl: add
LIBXL_DEVICE_MODEL_SAVE_FILE (Vitaly Kuznetsov) - libxc: support
XEN_DOMCTL_soft_reset operation (Vitaly Kuznetsov) - arch-specific hooks
for domain_soft_reset() (Vitaly Kuznetsov) - flask: DOMCTL_soft_reset
support (Vitaly Kuznetsov) - introduce XEN_DOMCTL_soft_reset (Vitaly
Kuznetsov) - evtchn: make evtchn_reset() ready for soft reset (Vitaly
Kuznetsov) - evtchn: make EVTCHNOP_reset suitable for kexec (Vitaly
Kuznetsov) - xl: introduce enum domain_restart_type (Vitaly Kuznetsov) -
libxl: support SHUTDOWN_soft_reset shutdown reason (Vitaly Kuznetsov) -
introduce SHUTDOWN_soft_reset shutdown reason (Vitaly Kuznetsov)
[4.4.4-106.el6]
- BUILDINFO: commit=3fefc8c56b039e14da79f5626c2d395fdd2389cb
- support 'tera' suffixes for size parameters (Andrew Cooper) [Orabug:
24804879]
- x86emul: honor guest CR0.TS and CR0.EM (Jan Beulich) [Orabug:
24696565] {CVE-2016-7777}
- Revert "86emul: honor guest CR0.TS and CR0.EM" (Boris Ostrovsky) -
move TLB-flush filtering out into populate_physmap during vm creation
(Dongli Zhang) [Orabug: 24738858]
- replace tlbflush check and operation with inline functions (Dongli
Zhang) [Orabug: 24738858]
- 86emul: honor guest CR0.TS and CR0.EM (Jan Beulich) [Orabug: 24696565]
More information about the Oraclevm-errata
mailing list