-
Wed Jun 12 2019 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-167.el7
- Reverting kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
(qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
-
Wed Jun 05 2019 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-166.el7
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
(qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
-
Tue May 28 2019 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-165.el7
- kvm-Fix-eax-for-cpuid-leaf-0x40000000.patch [bz#1709495]
- kvm-slirp-fix-big-little-endian-conversion-in-ident-prot.patch [bz#1669068]
- kvm-slirp-ensure-there-is-enough-space-in-mbuf-to-null-t.patch [bz#1669068]
- kvm-slirp-don-t-manipulate-so_rcv-in-tcp_emu.patch [bz#1669068]
- Resolves: bz#1669068
(CVE-2019-6778 qemu-kvm: QEMU: slirp: heap buffer overflow in tcp_emu() [rhel-7.7])
- Resolves: bz#1709495
(Change CPUID[0x40000000].EAX from 0 to KVM_CPUID_FE...ATURES (0x40000001))
-
Wed Apr 10 2019 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-164.el7
- kvm-target-i386-define-md-clear-bit-rhel.patch [bz#1693217]
- Resolves: bz#1693217
(CVE-2018-12126 qemu-kvm: hardware: Microarchitectural Store Buffer Data Sampling [rhel-7.7] )
-
Wed Apr 03 2019 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-163.el7
- kvm-x86-cpu-Enable-CLDEMOTE-Demote-Cache-Line-cpu-featur.patch [bz#1537773]
- kvm-vfio-pci-Lazy-PBA-emulation.patch [bz#1459077]
- kvm-slirp-check-sscanf-result-when-emulating-ident.patch [bz#1689791]
- Resolves: bz#1459077
([Intel 7.7 Bug] QEMU version in RHEL7.4 beta does not support KVM passthrough with WFR card)
- Resolves: bz#1537773
([Intel 7.7 Feat] KVM Enabling SnowRidge new NIs - qemu-kvm)
- Resolves: bz#1689791
(CVE-2019-9824 qemu-kvm: QEMU: Slirp: information leakage in tcp_emu() due to uninitialized stack variables [rhel-7])
-
Mon Jan 14 2019 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-162.el7
- kvm-i386-Deprecate-arch-facilities-and-make-it-block-liv.patch [bz#1658407]
- kvm-Do-not-build-bluetooth-support.patch [bz#1654627]
- Resolves: bz#1654627
(Qemu: hw: bt: keep bt/* objects from building [rhel-7.7])
- Resolves: bz#1658407
(mode="host-model" VMs include broken "arch-facilities" flag name [qemu-kvm])
-
Wed Jan 02 2019 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-161.el7
- kvm-Inhibit-ballooning-during-postcopy.patch [bz#1659229]
- kvm-balloon-Allow-multiple-inhibit-users.patch [bz#1659229]
- kvm-check-KVM_CAP_SYNC_MMU-with-kvm_vm_check_extensi.patch [bz#1659229]
- kvm-Use-inhibit-to-prevent-ballooning-without-synchr.patch [bz#1659229]
- kvm-vfio-Inhibit-ballooning-based-on-group-attachment-to.patch [bz#1659229]
- Resolves: bz#1659229
(Ballooning is incompatible with vfio assigned devices, but not prevented)
-
Mon Aug 20 2018 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-160.el7
- kvm-scsi-disk-support-reporting-of-rotation-rate.patch [bz#1583807]
- kvm-ide-support-reporting-of-rotation-rate.patch [bz#1583807]
- kvm-ide-avoid-referencing-NULL-dev-in-rotational-rate-se.patch [bz#1583807]
- kvm-slirp-Correct-size-check-in-m_inc.patch [bz#1586253]
- Resolves: bz#1583807
([DELL EMC 7.6 FEAT] option to mark virtual block device as rotational/non-rotational)
- Resolves: bz#1586253
(CVE-2018-11806 qemu-kvm: QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams [rhel-7.6])
-
Wed Aug 01 2018 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-159.el7
- kvm-multiboot-bss_end_addr-can-be-zero.patch [bz#1549822]
- kvm-multiboot-Remove-unused-variables-from-multiboot.c.patch [bz#1549822]
- kvm-multiboot-Use-header-names-when-displaying-fields.patch [bz#1549822]
- kvm-multiboot-fprintf-stderr.-error_report.patch [bz#1549822]
- kvm-multiboot-Reject-kernels-exceeding-the-address-space.patch [bz#1549822]
- kvm-multiboot-Check-validity-of-mh_header_addr.patch [bz#1549822]
- kvm-slirp-remove-mbuf-m_hdr-m_dat-indirection.patch [bz#1586253]
- kvm-slirp-correct-size-computation-while-concatenating-m.patch [bz#1586253]
- Resolves: bz#1549822
(CVE-2018-7550 qemu-kvm: Qemu: i386: multiboot OOB access while loading kernel image [rhel-7.6])
- Resolves: bz#1586253
(CVE-2018-11806 qemu-kvm: QEMU: slirp: heap buffer overflow while reassembling fragmented datagrams [rhel-7.6])
-
Wed Jun 27 2018 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-158.el7
- kvm-x86-cpu-Enable-new-SSE-AVX-AVX512-cpu-features.patch [bz#1513686]
- kvm-target-i386-Add-support-for-UMIP-and-RDPID-CPUID-bit.patch [bz#1526638]
- kvm-i386-Define-the-Virt-SSBD-MSR-and-handling-of-it-CVE.patch [bz#1584583]
- kvm-i386-define-the-AMD-virt-ssbd-CPUID-feature-bit-CVE-.patch [bz#1584583]
- kvm-qcow2-Repair-OFLAG_COPIED-when-fixing-leaks.patch [bz#1527122]
- kvm-iotests-Repairing-error-during-snapshot-deletion.patch [bz#1527122]
- kvm-headers-add-drm_fourcc.h.patch [bz#1555246]
- kvm-spice-fix-simple-display-on-bigendian-hosts.patch [bz#1555246]
- kvm-ui-pixman-add-qemu_drm_format_to_pixman.patch [bz#1555246]
- kvm-console-nicer-initial-screen.patch [bz#1555246]
- kvm-console-minimal-hotplug-suport.patch [bz#1555246]
- kvm-vfio-common-cleanup-in-vfio_region_finalize.patch [bz#1555246]
- kvm-linux-headers-Update-to-include-region-based-display.patch [bz#1555246]
- kvm-qdev-New-DEFINE_PROP_ON_OFF_AUTO.patch [bz#1555246]
- kvm-vfio-display-core-wireup.patch [bz#1555246]
- kvm-vfio-display-adding-region-support.patch [bz#1555246]
- kvm-vfio-pci-Default-display-option-to-off.patch [bz#1555246]
- Resolves: bz#1513686
([Intel 7.6 Feat] qemu-kvm Enabling Icelake new NIs)
- Resolves: bz#1526638
([Intel 7.6 FEAT] KVM User Mode Instruction Prevention (UMIP) - qemu-kvm)
- Resolves: bz#1527122
(The copied flag should be updated during '-r leaks')
- Resolves: bz#1555246
([RFE] Support console VNC on Nvidia vGPU - qemu)
- Resolves: bz#1584583
(CVE-2018-3639 qemu-kvm: hw: cpu: speculative store bypass [rhel-7.6])