[Oraclevm-errata] OVMBA-2017-0097 Oracle VM 3.4 xen bug fix update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Thu May 11 14:27:37 PDT 2017


Oracle VM Bug Fix Advisory OVMBA-2017-0097

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
xen-4.4.4-115.0.6.el6.x86_64.rpm
xen-tools-4.4.4-115.0.6.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/xen-4.4.4-115.0.6.el6.src.rpm



Description of changes:

[4.4.4-115.0.6.el6]
- BUILDINFO: xen commit=2955a959c38186265b287f2c3ecf2e0e0bc86171
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional 
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- x86: correct create_bounce_frame (Boris Ostrovsky)  [Orabug: 25927739]
- x86: discard type information when stealing pages (Boris Ostrovsky) 
[Orabug: 25927669]
- multicall: deal with early exit conditions (Boris Ostrovsky)  [Orabug: 
25927592]

[4.4.4-115.0.5.el6]
- BUILDINFO: xen commit=d97f0247936cfc8b9b91c23d88c4377fd12a2634
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional 
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- cirrus: add blit_is_unsafe call to cirrus_bitblt_cputovideo (Gerd 
Hoffmann)  [Orabug: 25533541] {CVE-2017-2620} {CVE-2017-2620}
- cirrus: fix oob access issue (CVE-2017-2615) (Li Qiang)  [Orabug: 
25533433]  {CVE-2017-2615} {CVE-2017-2615}
- cirrus/vnc: zap drop bitblit support from console code. (Gerd 
Hoffmann)  [Orabug: 25718334]  {CVE-2016-9603}
- display: cirrus: ignore source pitch value as needed in blit_is_unsafe 
(Bruce Rogers)  [Orabug: 25533541]  {CVE-2017-2620}
- oxenstored: trim history in the frequent_ops function (Thomas Sanders) 
  [Orabug: 25742326]
- oxenstored transaction conflicts: improve logging (Thomas Sanders) 
[Orabug: 25742326]
- oxenstored: don't wake to issue no conflict-credit (Thomas Sanders) 
[Orabug: 25742326]
- oxenstored: do not commit read-only transactions (Thomas Sanders) 
[Orabug: 25742326]
- oxenstored: allow self-conflicts (Thomas Sanders)  [Orabug: 25742326]
- oxenstored: blame the connection that caused a transaction conflict 
(Jonathan Davies)  [Orabug: 25742326]
- oxenstored: track commit history (Jonathan Davies)  [Orabug: 25742326]
- oxenstored: discard old commit-history on txn end (Thomas Sanders) 
[Orabug: 25742326]
- oxenstored: only record operations with side-effects in history 
(Jonathan Davies)  [Orabug: 25742326]
- oxenstored: support commit history tracking (Jonathan Davies) 
[Orabug: 25742326]
- oxenstored: add transaction info relevant to history-tracking 
(Jonathan Davies)  [Orabug: 25742326]
- oxenstored: ignore domains with no conflict-credit (Thomas Sanders) 
[Orabug: 25742326]
- oxenstored: handling of domain conflict-credit (Thomas Sanders) 
[Orabug: 25742326]
- oxenstored: comments explaining some variables (Thomas Sanders) 
[Orabug: 25742326]
- oxenstored: allow compilation prior to OCaml 3.12.0 (Jonathan Davies) 
  [Orabug: 25742326]
- oxenstored: log request and response during transaction replay 
(Jonathan Davies)  [Orabug: 25742326]
- oxenstored: replay transaction upon conflict (Jonathan Davies) 
[Orabug: 25742326]
- oxenstored: move functions that process simple operations (Jonathan 
Davies)  [Orabug: 25742326]
- oxenstored: keep track of each transaction's operations (Jonathan 
Davies)  [Orabug: 25742326]
- oxenstored: refactor request processing (Jonathan Davies)  [Orabug: 
25742326]
- oxenstored: remove some unused parameters (Jonathan Davies)  [Orabug: 
25742326]
- oxenstored: refactor putting response on wire (Jonathan Davies) 
[Orabug: 25742326]
- oxenstored: add a safe net mechanism for existing ill-behaved clients 
(Zheng Li)  [Orabug: 25742326]
- oxenstored: only process domain connections that notify us by events 
(Zheng Li)  [Orabug: 25742326]
- oxenstored: enable domain connection indexing based on eventchn port 
(Zheng Li)  [Orabug: 25742326]
- oxenstored: use hash table to store socket connections (Zheng Li) 
[Orabug: 25742326]
- oxenstored: catch the error when a connection is already deleted 
(Zheng Li)  [Orabug: 25742326]
- oxenstored: perform a 3-way merge of the quota after a transaction 
(Jerome Maloberti)  [Orabug: 25742326]
- oxenstored: exempt dom0 from domU node quotas (Vincent Bernardoff) 
[Orabug: 25742326]
- mm: Don't check for waiters when scrubbing (Boris Ostrovsky)  [Orabug: 
25690120]

[4.4.4-115.0.4.el6]
- BUILDINFO: xen commit=41c3f422a0da1574f3ddc8a9f6aa3a3272ec757d
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional 
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- memory: properly check guest memory ranges in XENMEM_exchange handling 
(Boris Ostrovsky)  [Orabug: 25758797]  {CVE-2017-7228}
- xenstored: Log when the write transaction rate limit bites (Ian 
Jackson)  [Orabug: 25742326]
- xenstored: apply a write transaction rate limit (Ian Jackson) 
[Orabug: 25742326]

[4.4.4-115.0.3.el6]
- BUILDINFO: xen commit=253d746c92e13e37e6bbfa2848600d52e0274b01
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional 
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- xend: do not acquire vm running lock at start after soft_reset 
(Zhigang Wang)  [Orabug: 25729452] [Orabug: 25779331]

[4.4.4-115.0.2.el6]
- BUILDINFO: xen commit=fb27c720c8a7446c201dc72ec1355f41e1baa9ad
- BUILDINFO: QEMU upstream commit=fcd17fdf18b95a9e408acc84f6d2b37cf3fc0335
- BUILDINFO: QEMU traditional 
commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- xm: Fix the error message displayed by 'xm create ...' (Venu 
Busireddy)  [Orabug: 25721689]
- xm: expand pci hidden devices tools (Venu Busireddy)  [Orabug: 25721611]
- xend: fix vif device ID allocation (Zhigang Wang)  [Orabug: 25692157] 
[Orabug: 25704937]

[4.4.4-115.0.1.el6]
- BUILDINFO: xen commit=987e6e687b452b710ae88baf78ac000cfea32152
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional 
commit=d9ba4c53b14ebf9a0613b5638f90d95489622f0c
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- xend: fix waitForSuspend (Zhigang Wang)  [Orabug: 25638583] [Orabug: 
25653476]

[4.4.4-115.el6]
- BUILDINFO: xen commit=ba16f81e80d451cae3ebff05b45753a74f9eecff
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional 
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- IOMMU: always call teardown callback (Oleksandr Tyshchenko)  [Orabug: 
25481896]

[4.4.4-114.el6]
- BUILDINFO: xen commit=8c4c94925bdc97113fe59b633637bbb9c3316ea4
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional 
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- libxl: return any serial tty path in libxl_console_get_tty (Bob Liu) 
[Orabug: 24943293]
- xl: Accept a list for serial in config file (White, Edmund H) 
[Orabug: 24943293]
- libxl: Allow multiple serial ports on HVM domain creation (White, 
Edmund H)  [Orabug: 24943293]
- x86/hvm: do not set msr_tsc_adjust on hvm_set_guest_tsc_fixed (Joao 
Martins)

[4.4.4-113.el6]
- BUILDINFO: xen commit=57171bcec8e3e91deda9658a4465fce37dcc8c65
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional 
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- x86emul: CMPXCHG8B ignores operand size prefix (Jan Beulich)  [Orabug: 
25180218]

[4.4.4-112.el6]
- BUILDINFO: xen commit=a66faa9f75c2cb194f91cadba3de0501420c29bf
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional 
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- mm: Make scrubbing a low-priority task (Dongli Zhang)  [Orabug: 20816669]

[4.4.4-111.el6]
- BUILDINFO: xen commit=f76fb71aee8f5b145060baef9005302e6be189b9
- BUILDINFO: QEMU upstream commit=f663d3dd4e968756d33e29cb2c2c956cabbdd4ca
- BUILDINFO: QEMU traditional 
commit=bc33fbc6f9a004dc11dcc18f1c5c755a60b65b73
- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e
- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee
- x86/emul: Correct the handling of eflags with SYSCALL (Andrew Cooper) 
  [Orabug: 25291677]  {CVE-2016-10013}
- x86: force EFLAGS.IF on when exiting to PV guests (Jan Beulich) 
[Orabug: 25235002]  {CVE-2016-10024}

[4.4.4-110.el6]
- BUILDINFO: commit=fb8035420d57b6a66825024803198117d0143ab1
- Rombios: large disk support for LBA48 to L-CHS translation (Bhavesh Davda)

[4.4.4-109.el6]
- BUILDINFO: commit=2bf7de2bdebe4231d3c04ca0b4ceca4c00767f4e
- pygrub: Properly quote results, when returning them to the caller: 
(Ian Jackson)  [Orabug: 25064245]
- x86emul: fix huge bit offset handling (Jan Beulich)  [Orabug: 25064081]
- x86/PV: writes of %fs and %gs base MSRs require canonical addresses 
(Jan Beulich)  [Orabug: 25063963]
- x86/HVM: don't load LDTR with VM86 mode attrs during task switch (Jan 
Beulich)  [Orabug: 25063885]
- x86/hvm: Fix the handling of non-present segments (Andrew Cooper) 
[Orabug: 25063804]

[4.4.4-108.el6]
- BUILDINFO: commit=92415590fb4ac8d69585aa50b4830ccd82084da3
- libxl: Remove redundant setting of phyical-device (George Dunlap) 
[Orabug: 24478760]

[4.4.4-107.el6]
- BUILDINFO: commit=631b03738b1e5e8c39593426fc9a07f350eb1735
- x86/hvm: extend HVM cpuid leaf with vcpu id (Paul Durrant) - x86/hvm: 
add HVM-specific hypervisor CPUID leaf (Boris Ostrovsky) - xend: 
soft_reset support. (Konrad Rzeszutek Wilk) - (lib)xl: soft reset 
support (Vitaly Kuznetsov) - tools/libxl: Save and restore 
EMULATOR_XENSTORE_DATA content (Andrew Cooper)  [Orabug: 19807079]
- libxl: introduce libxl__device_model_xs_path (Wei Liu) - libxl: add 
LIBXL_DEVICE_MODEL_SAVE_FILE (Vitaly Kuznetsov) - libxc: support 
XEN_DOMCTL_soft_reset operation (Vitaly Kuznetsov) - arch-specific hooks 
for domain_soft_reset() (Vitaly Kuznetsov) - flask: DOMCTL_soft_reset 
support (Vitaly Kuznetsov) - introduce XEN_DOMCTL_soft_reset (Vitaly 
Kuznetsov) - evtchn: make evtchn_reset() ready for soft reset (Vitaly 
Kuznetsov) - evtchn: make EVTCHNOP_reset suitable for kexec (Vitaly 
Kuznetsov) - xl: introduce enum domain_restart_type (Vitaly Kuznetsov) - 
libxl: support SHUTDOWN_soft_reset shutdown reason (Vitaly Kuznetsov) - 
introduce SHUTDOWN_soft_reset shutdown reason (Vitaly Kuznetsov)

[4.4.4-106.el6]
- BUILDINFO: commit=3fefc8c56b039e14da79f5626c2d395fdd2389cb
- support 'tera' suffixes for size parameters (Andrew Cooper)  [Orabug: 
24804879]
- x86emul: honor guest CR0.TS and CR0.EM (Jan Beulich)  [Orabug: 
24696565]  {CVE-2016-7777}
- Revert "86emul: honor guest CR0.TS and CR0.EM" (Boris Ostrovsky) - 
move TLB-flush filtering out into populate_physmap during vm creation 
(Dongli Zhang)  [Orabug: 24738858]
- replace tlbflush check and operation with inline functions (Dongli 
Zhang)  [Orabug: 24738858]
- 86emul: honor guest CR0.TS and CR0.EM (Jan Beulich)  [Orabug: 24696565]



More information about the Oraclevm-errata mailing list