-
Mon Oct 29 2018 Mark Kanda <mark.kanda@oracle.com> - 12:2.9.0-18.el7
- i386: Clean up cache CPUID code (Eduardo Habkost) [Orabug: 28855262]
- i386: Add support for CPUID_8000_001E for AMD (Babu Moger) [Orabug: 28855262]
- i386: Initialize cache information for EPYC family processors (Babu Moger) [Orabug: 28855262]
- i386: Add cache information in X86CPUDefinition (Babu Moger) [Orabug: 28855262]
- i386: Populate AMD Processor Cache Information for cpuid 0x8000001D (Babu Moger) [Orabug: 28855262]
- i386: Add new property to control cache info (Babu Moger) [Orabug: 28855262]
- i386: Helpers to encode cache information consistently (Eduardo Habkost) [Orabug: 28855262]
- vfio-pci: add FAILOVER_PRIMARY_CHANGED event to shorten downtime during failover (Si-Wei Liu) [Orabug: 28833460]
- virtio_net: Add support for "Data Path Switching" during Live Migration. (Venu Busireddy) [Orabug: 28732905]
-
Tue Oct 09 2018 Karl Heubaum <karl.heubaum@oracle.com> - 12:2.9.0-17.el7
- i386: Remove generic SMT thread check (Babu Moger) [Orabug: 28676425]
- pc: Fix typo on PC_COMPAT_2_12 (Eduardo Habkost) [Orabug: 28676425]
- i386: Enable TOPOEXT feature on AMD EPYC CPU (Babu Moger) [Orabug: 28676425]
- net: ignore packet size greater than INT_MAX (Jason Wang) [Orabug: 28762625] {CVE-2018-17963}
- pcnet: fix possible buffer overflow (Jason Wang) [Orabug: 28762617] {CVE-2018-17962}
- rtl8139: fix possible out of bound access (Jason Wang) [Orabug: 28762613] {CVE-2018-17958}
- ne2000: fix possible out of bound access in ne2000_receive (Jason Wang) [Orabug: 28733338] {CVE-2018-10839}
- seccomp: set the seccomp filter to all threads (Marc-André Lureau) [Orabug: 28576303] {CVE-2018-15746}
- virtio_net: Introduce VIRTIO_NET_F_STANDBY feature bit to virtio_net (Venu Busireddy) [Orabug: 28497003]
- virtio-net: use 64-bit values for feature flags (Jason Baron) [Orabug: 28497003]
- qga: check bytes count read by guest-file-read (Prasad J Pandit) [Orabug: 28312939] {CVE-2018-12617}
- CVE-2017-2630: Qemu: nbd: oob stack write in client routine drop_sync (Mark Kanda) [Orabug: 28424694] {CVE-2017-2630}
- CVE-2017-2633: Qemu: VNC: memory corruption due to unchecked resolution limit (Mark Kanda) [Orabug: 28424697] {CVE-2017-2633}
- CVE-2017-7471: Qemu: 9p: virtfs allows guest to change filesystem attributes (Mark Kanda) [Orabug: 28407849] {CVE-2017-7471}
- slirp: correct size computation while concatenating mbuf (Prasad J Pandit) [Orabug: 28263244] {CVE-2018-11806}
-
Thu May 31 2018 Mark Kanda <mark.kanda@oracle.com> - 12:2.9.0-11.1.el7
- i386: Define the Virt SSBD MSR and handling of it (CVE-2018-3639) (Konrad Rzeszutek Wilk) [Orabug: 28110449] {CVE-2018-3639}
- i386: define the AMD 'virt-ssbd' CPUID feature bit (CVE-2018-3639) (Konrad Rzeszutek Wilk) [Orabug: 28110449] {CVE-2018-3639}
- i386: define the 'ssbd' CPUID feature bit (CVE-2018-3639) (Daniel P. Berrangé) [Orabug: 28110449] {CVE-2018-3639}
-
Thu Mar 29 2018 Mark Kanda <mark.kanda@oracle.com> - 12:2.9.0-10.el7
- BUILDINFO: commit=ac5b439adae91b38d839320e7de2cdca060e9cc1
- block: Fix NULL dereference on empty drive error (Kevin Wolf)
- Revert "IDE: Do not flush empty CDROM drives" (Stefan Hajnoczi)
- block: test blk_aio_flush() with blk->root == NULL (Kevin Wolf)
- block: add BlockBackend->in_flight counter (Stefan Hajnoczi)
- block: extract AIO_WAIT_WHILE() from BlockDriverState (Stefan Hajnoczi)
- aio: rename aio_context_in_iothread() to in_aio_context_home_thread() (Stefan Hajnoczi)
- qemu: 9pfs: use g_malloc0 to allocate space for xattr (Prasad J Pandit) {CVE-2017-15038}
- qemu.spec: Add dependency for libiscsi 1.9.0-8 (Mark Kanda)
- vga: fix region calculation (Gerd Hoffmann) {CVE-2018-7858}
- qemu.spec: Enable coroutine pool and vhost-vsock (Karl Heubaum)
- i386: Add support for SPEC_CTRL MSR (Paolo Bonzini) {CVE-2017-5715}
- intel-iommu: Extend address width to 48 bits (Prasad Singamsetty)
- intel-iommu: Redefine macros to enable supporting 48 bit address width (Prasad Singamsetty)
- vga: check the validation of memory addr when draw text (linzhecheng) {CVE-2018-5683} {CVE-2018-5683}
- osdep: Fix ROUND_UP(64-bit, 32-bit) (Eric Blake) {CVE-2017-18043}
- qemu.spec: Enable 9p virtual filesystem. (Karl Heubaum)
- i386: Add EPYC-IBPB CPU model (Eduardo Habkost) {CVE-2017-5715}
- i386: Add new -IBRS versions of Intel CPU models (Eduardo Habkost) {CVE-2017-5715} {CVE-2017-5715}
- i386: Add FEAT_8000_0008_EBX CPUID feature word (Eduardo Habkost) {CVE-2017-5715}
- i386: Add spec-ctrl CPUID bit (Eduardo Habkost) {CVE-2017-5715}
- target/i386: add clflushopt to "Skylake-Server" cpu model (Haozhong Zhang)
- x86/cpu: Enable new SSE/AVX/AVX512 cpu features (Yang Zhong)
- target-i386: adds PV_TLB_FLUSH CPUID feature bit (Wanpeng Li)
- target-i386/cpu: Add new EPYC CPU model (Brijesh Singh)
- i386: add Skylake-Server cpu model (Boqun Feng (Intel))
- ui: mix misleading comments & return types of VNC I/O helper methods (Daniel P. Berrange)
- ui: add trace events related to VNC client throttling (Daniel P. Berrange)
- ui: place a hard cap on VNC server output buffer size (Daniel P. Berrange) {CVE-2017-15124} {CVE-2017-15124}
-
Fri Oct 06 2017 Karl Heubaum <karl.heubaum@oracle.com> - 12:2.9.0-4.el7
- BUILDINFO: commit=d37985d34c05a57385563402bc8d85e81557904d
- multiboot: Use header names when displaying fields (Jack Schwartz)
- multiboot: Remove unused variables from multiboot.c (Jack Schwartz)
- multiboot: bss_end_addr can be zero (Jack Schwartz)
- multiboot: validate multiboot header address values (Prasad J Pandit) {CVE-2017-14167}
- numa: Allow setting NUMA distance for different NUMA nodes (He Chen)
- Tool to get guest registers via one tool (Mark Kanda)
- hw/vfio: improve error message when cannot init vfio event notifiers (Jim Quigley)
- IDE: test flush on empty CDROM (Kevin Wolf)
- IDE: Do not flush empty CDROM drives (Stefan Hajnoczi) {CVE-2017-12809}
- vga: stop passing pointers to vga_draw_line* functions (Gerd Hoffmann) {CVE-2017-13672}
- vga: fix display update region calculation (split screen) (Gerd Hoffmann) {CVE-2017-13673}
- vga: fix display update region calculation (Gerd Hoffmann)
- vmsvga: fix vmsvga_update_display (Gerd Hoffmann)
- g364fb: make display updates thread safe (Gerd Hoffmann)
- exynos: make display updates thread safe (Gerd Hoffmann)
- framebuffer: make display updates thread safe (Gerd Hoffmann)
- vga: make display updates thread safe. (Gerd Hoffmann)
- memory: add support getting and using a dirty bitmap copy. (Gerd Hoffmann)
- vga: add vga_scanline_invalidated helper (Gerd Hoffmann)
- bitmap: add bitmap_copy_and_clear_atomic (Gerd Hoffmann)
- virtio-scsi: Unset hotplug handler when unrealize (Mark Kanda)
- slirp: fix clearing ifq_so from pending packets (Jack Schwartz) {CVE-2017-13711}
- coroutine-lock: do not touch coroutine after another one has been entered (Mark Kanda)
- 9pfs: local: forbid client access to metadata (CVE-2017-7493) (Greg Kurz) {CVE-2017-7493}
- audio: release capture buffers (Gerd Hoffmann) {CVE-2017-8309}
- input: limit kbd queue depth (Gerd Hoffmann) {CVE-2017-8379}
- qemu.spec: Enable GlusterFS support (Karl Heubaum)
- sockets: Handle race condition between binds to the same port (Knut Omang)
- sockets: factor out create_fast_reuse_socket (Knut Omang)
- tests: Add test-listen - a stress test for QEMU socket listen (Knut Omang)
-
Thu Aug 03 2017 Karl Heubaum <karl.heubaum@oracle.com> - 12:2.9.0-2.el7
- BUILDINFO: commit=d96598e4ceae6bdc2fba62529a27cf493631d22f
- qemu.spec: Initial qemu.spec
-
Tue Apr 25 2017 Cole Robinson <crobinso@redhat.com> - 2:2.9.0-1
- Rebase to qemu-2.9.0 GA
-
Thu Apr 13 2017 Cole Robinson <crobinso@redhat.com> - 2:2.9.0-0.2-rc4
- Rebase to qemu-2.9.0-rc4
- Fix ipxe rom links for aarch64
-
Sat Apr 08 2017 Richard W.M. Jones <rjones@redhat.com> - 2:2.9.0-0.2-rc3
- Backport upstream fix for assertion when copy-on-read=true (RHBZ#1439922).
-
Tue Apr 04 2017 Cole Robinson <crobinso@redhat.com> - 2:2.9.0-0.1-rc3
- Rebase to qemu-2.9.0-rc3