aboutsummaryrefslogtreecommitdiffstats
path: root/main/xen
Commit message (Collapse)AuthorAgeFilesLines
* main/xen: fix secfixes commentNatanael Copa2017-11-231-1/+1
|
* main/xen: add leftover patchLeonardo Arena2017-10-252-1/+39
|
* main/xen: add secinfoLeonardo Arena2017-10-251-0/+13
|
* main/xen: security upgrade to 4.6.6Leonardo Arena2017-10-2541-3303/+423
| | | | | | (CVE-2017-12135, CVE-2017-12137, CVE-2017-12136, CVE-2017-12134, CVE-2017-12855) fixes #7736
* main/xen: update sourceLeonardo Arena2017-10-251-2/+2
|
* main/xen: security fixesLeonardo Arena2017-10-255-1/+390
| | | | | | (CVE-2017-14316, CVE-2017-14317, CVE-2017-14318, CVE-2017-14319) fixes #7823
* main/xen: security fixes #6918 (XSA-207, CVE-2017-2615, CVE-2017-2620)Leonardo Arena2017-06-167-1/+355
|
* main/xen: security fixes #7291Leonardo Arena2017-06-154-1/+268
| | | | CVE-2017-8903, CVE-2017-8904, CVE-2017-8905
* main/xen: security fixes #7115 (CVE-2016-9603, CVE-2017-7228)Leonardo Arena2017-04-284-1/+588
|
* main/xen: security fixes #6572Sergey Lukin2016-12-294-1/+179
| | | | | | | | | | | CVE-2016-10024, XSA-202: x86 PV guests may be able to mask interrupts http://xenbits.xen.org/xsa/advisory-202.html CVE-2016-10025, XSA-203: x86: missing NULL pointer check in VMFUNC emulation http://xenbits.xen.org/xsa/advisory-203.html CVE-2016-10013, XSA-204: x86: Mishandling of SYSCALL singlestep during emulation http://xenbits.xen.org/xsa/advisory-204.html
* main/xen: security fixes. Fixes #6542Leonardo Arena2016-12-206-1/+547
| | | | | | | | | | CVE-2016-9932 CVE-2016-9815 CVE-2016-9816 CVE-2016-9817 CVE-2016-9818 (cherry picked from commit 3b5fa3b170637b8149c63d415d3a42c638b8b71a)
* main/xen: security upgrade - fixes #6350, #6497Sergey Lukin2016-12-1311-1/+846
| | | | | | | | | | | | | CVE-2016-7777 CVE-2016-9377 CVE-2016-9378 CVE-2016-9379 CVE-2016-9380 CVE-2016-9381 CVE-2016-9382 CVE-2016-9383 CVE-2016-9385 CVE-2016-9386
* main/xen: security fixes. Fixes #6153Leonardo Arena2016-10-146-1/+361
| | | | | | | CVE-2016-7092, XSA-185: x86: Disallow L3 recursive pagetable for 32-bit PV guests¶ CVE-2016-7093, XSA-186: x86: Mishandling of instruction pointer truncation during emulation¶ CVE-2016-7094, XSA-187: x86 HVM: Overflow of sh_ctxt->seg_reg[]¶ CVE-2016-7154, XSA-188: use after free in FIFO event channel code
* main/xen: security fixes (CVE-2016-6258, CVE-2016-6259, CVE-2016-5403)Natanael Copa2016-08-125-1/+290
| | | | | | fixes #6018 (cherry picked from commit d0a7fcca4e82f4ff531083fa762975ee6b0ec9f4)
* main/xen: security upgrade to 4.6.3. Fixes #5776Leonardo Arena2016-06-249-967/+5
| | | | | | | | | | | | | | | | | CVE-2016-4962, XSA-175: Unsanitised guest input in libxl device handling code http://xenbits.xen.org/xsa/advisory-175.html CVE-2016-4480, XSA-176: x86 software guest page walk PS bit handling flaw http://xenbits.xen.org/xsa/advisory-176.html CVE-2016-4963, XSA-178: Unsanitised driver domain input in libxl device handling http://xenbits.xen.org/xsa/advisory-178.html CVE-2016-3710 CVE-2016-3712, XSA-179: QEMU: Banked access to VGA memory (VBE) uses inconsistent bounds checks http://xenbits.xen.org/xsa/advisory-179.html CVE-2014-3672, XSA-180: Unrestricted qemu logging http://xenbits.xen.org/xsa/advisory-180.html
* main/xen: security fixes (CVE-2016-3158, CVE-2016-3159, CVE-2016-3960). ↵Leonardo Arena2016-05-093-1/+292
| | | | | | Fixes #5490 (cherry picked from commit 40a3ee6c24583c262a4a8390459526dc40832862)
* main/xen: upgrade to 4.6.1Natanael Copa2016-02-2918-1099/+19
| | | | (cherry picked from commit 8de87f6fcb13498bc4cc667709aa9e481f087f7a)
* main/xen: security fix multiple vulnerabilties. Fixes #5160Leonardo Arena2016-02-2413-1/+1027
| | | | | | | | | | | | | | (CVE-2016-2270, XSA-154) (CVE-2015-8550, XSA-155) (CVE-2015-8339, CVE-2015-8340, XSA-159) (CVE-2015-8341, XSA-160) (CVE-2015-8555, XSA-165) (CVE-2016-1570, XSA-167) (CVE-2016-1571, XSA 168) (CVE-2015-8615, XSA-169) (CVE-2016-2271, XSA-170) (cherry picked from commit ccba2d08cc9d7de25cfa2eccbe943cb2e4ced400)
* main/xen: rebuild against fixed ncurses widechar onlyNatanael Copa2015-12-181-1/+1
|
* main/xen: rebuild against ncurses wide charNatanael Copa2015-12-171-1/+1
|
* main/xen: security fixes (CVE-2015-5307, CVE-2015-8104)Leonardo Arena2015-11-102-1/+132
|
* main/xen: fix install location of init-xenstore-domainNatanael Copa2015-10-292-5/+5
|
* main/xen: upgrade to 4.6.0 and fix sec issuesNatanael Copa2015-10-2917-768/+514
|
* main/xen: rebuild against ncurses-6.0Natanael Copa2015-10-161-1/+1
|
* main/xen: security fixes (CVE-2015-3259,CVE-2015-5154)Natanael Copa2015-07-317-1/+579
| | | | ref #4493
* main/xen: enable libnl3Natanael Copa2015-07-011-2/+2
|
* main/xen: fix build with gcc5 and cleanupNatanael Copa2015-07-013-2/+133
|
* main/xen: security upgrade to 4.5.1Natanael Copa2015-07-0117-1361/+152
|
* main/xen: fix xendomains init.d script with screenNatanael Copa2015-07-012-5/+5
| | | | ref #4394
* main/xen: upgrade to 4.5Natanael Copa2015-05-1518-63/+1383
|
* main/*: replace all sbin/runscript with sbin/openrc-runNatanael Copa2015-04-286-18/+18
|
* main/xen: upgrade to 4.4.2Natanael Copa2015-04-2111-1160/+45
|
* main/*: remove libiconv-dev from makedependsNatanael Copa2015-04-091-1/+1
|
* main/xen: fix for xsa118Natanael Copa2015-03-132-1/+120
| | | | ref #3894
* main/xen: various sec fixes (xsa109 - xsa116)Natanael Copa2015-01-238-2/+997
| | | | | | | | | | | | | | | | | | | | | | | | | ref #3704 XSA-116 CVE-2015-0361 xen crash due to use after free on hvm guest teardown XSA-114 CVE-2014-9065 CVE-2014-9066 p2m lock starvation XSA-113 CVE-2014-9030 Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling XSA-112 CVE-2014-8867 Insufficient bounding of "REP MOVS" to MMIO emulated inside the hypervisor XSA-111 CVE-2014-8866 Excessive checking in compatibility mode hypercall argument translation XSA-110 CVE-2014-8595 Missing privilege level checks in x86 emulation of far branches XSA-109 CVE-2014-8594 Insufficient restrictions on certain MMU update hypercalls
* main/xen: add tmux supportNatanael Copa2014-11-243-21/+53
| | | | remove screen from deps. use no console as default
* main/xen: fix race in xendomains init.d scriptNatanael Copa2014-11-242-39/+59
| | | | | the gnu screen would show files in SCREENDIR before its ready to accept connections. so starting domains failed
* main/xen: write domain 0's domid to xenstoreNatanael Copa2014-11-032-7/+8
| | | | | | Since xen 4.4 we need set domid for dom0. see http://xenbits.xen.org/gitweb/?p=xen.git;a=patch;h=02ebea7768fe723deaa56c2cfcb860874544b47d
* main/xen: remove perl dependencyNatanael Copa2014-10-093-2/+101
| | | | use a tiny C program to do the file/fd compare instead of perl
* main/xen: split out python bits into py-xenNatanael Copa2014-10-091-2/+29
| | | | so we dont need pull in python as dependency
* main/xen: fix filename clash with qemu and cleanupNatanael Copa2014-10-097-94/+18
|
* main/xen: upgrade to 4.4.1 and remove xendNatanael Copa2014-10-0914-2014/+74
| | | | fixes #3228
* main/xen: upgrade to 4.3.3 and fix CVE-2014-7188Natanael Copa2014-10-022-6/+45
| | | | | | | | | | | | | | The following critical vulnerabilities have been fixed: - CVE-2014-2599 / XSA-89 HVMOP_set_mem_access is not preemptible - CVE-2014-3124 / XSA-92 HVMOP_set_mem_type allows invalid P2M entries to be created - CVE-2014-3967,CVE-2014-3968 / XSA-96 Vulnerabilities in HVM MSI injection - CVE-2014-4021 / XSA-100 Hypervisor heap contents leaked to guests Also add patch for xsa108: - CVE-2014-7188: Improper MSR range used for x2APIC emulation. ref #3412
* main/xen: integrate XSA-97 patchWilliam Pitcock2014-09-141-0/+2
|
* main/xen: security fix for XSA-97 (CVE-2014-5146,CVE-2014-5149)Natanael Copa2014-08-252-1/+490
| | | | ref #3290
* main/xen: fix hvmloaderNatanael Copa2014-08-254-1/+3048
| | | | | | | | | hvmloader is 32 bit but pulled in 64bit stdint from musl headers. we solve this by providing our own stdint_local.h elf.h pulls in stdint.h too so we ship our own elf_local.h too ref #3308
* main/xen: make sure /var/run/xen existsNatanael Copa2014-06-113-9/+11
| | | | | | | | | - start xendomains after localmount so localmount does not mount over our /var - add checkpath to xendomains, just in case ref #2837
* main/xen: revision bump (to resign)William Pitcock2014-04-251-1/+1
|
* main/xen: upgrade to 4.3.2William Pitcock2014-04-095-174/+27
|
* main/xen: fix uclibc regression in musl-support patchWilliam Pitcock2014-03-252-14/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 06:55:02 +0000