New changelog entries:
* SECURITY UPDATE: Speculative Store Bypass
- debian/patches/ubuntu/CVE-2018-3639/0001*.patch: define the 'ssbd'
CPUID feature bit in target/i386/cpu.*.
- debian/patches/ubuntu/CVE-2018-3639/0002*.patch: define the AMD
'virt-ssbd' CPUID feature bit in target/i386/cpu.c.
- debian/patches/ubuntu/CVE-2018-3639/0003*.patch: define the Virt SSBD
MSR and handling of it in target/i386/cpu.h, target/i386/kvm.c,
target/i386/machine.c.
- CVE-2018-3639
New changelog entries:
* SECURITY UPDATE: out-of-bounds access during migration via ps2
- debian/patches/ubuntu/CVE-2017-16845.patch: check PS2Queue pointers
in post_load routine in hw/input/ps2.c.
- CVE-2017-16845
* SECURITY UPDATE: arbitrary code execution via load_multiboot
- debian/patches/ubuntu/CVE-2018-7550.patch: handle bss_end_addr being
zero in hw/i386/multiboot.c.
- CVE-2018-7550
* SECURITY UPDATE: denial of service in Cirrus CLGD 54xx VGA
- debian/patches/ubuntu/CVE-2018-7858.patch: fix region calculation in
hw/display/vga.c.
- CVE-2018-7858
New changelog entries:
* Remove LP: 1752026 changes to d/p/ubuntu/define-ubuntu-machine-types.patch.
The Kernel fixes are preferred and already committed to the kernel.
Therefore remove the default disabling of the HTM feature (LP: #1761175)
* d/p/ubuntu/lp1739665-SSE-AVX-AVX512-cpu-features.patch: Enable new
SSE/AVX/AVX512 cpu features (LP: #1739665)
* d/p/ubuntu/lp1740219-continuous-space-commpage.patch: make Arm
space+commpage continuous which avoids long startup times on
qemu-user-static (LP: #1740219)
* d/p/ubuntu/lp-1761372-*: provide pseries-bionic-2.11-sxxm type as
convenience with all meltdown/spectre workarounds enabled by default.
This is not the default type following upstream and x86 on that.
(LP: #1761372).
* d/p/ubuntu/lp-1704312-1-* provide means to manually handle filesystem-dax
with pmem by backporting align and unarmed options (LP: #1704312).
* d/p/ubuntu/lp-1762315-slirp-Add-domainname.patch: slirp: Add domainname
option to slirp's DHCP server (LP: #1762315)
New changelog entries:
* Revert the slirp changes of 1:2.11+dfsg-1ubuntu3 until they are upstream
accepted to be better long term maintainable (LP: #1753938)
New changelog entries:
* d/p/ubuntu/define-ubuntu-machine-types.patch: Disable HTM feature for
ppc64el in spapr to let the defaults not fail on Power9 HW (LP: #1752026).
* d/p/ubuntu/lp1753826-memfd-fix-configure-test.patch: fix FTBFS with newer
versions of glibc >=2.27 (LP: #1753826)
b852525...
by
Benjamin Drung <email address hidden>
Import patches-unapplied version 1:2.11+dfsg-1ubuntu3 to ubuntu/bionic-proposed
New changelog entries:
* d/p/ubuntu/0001-slirp-Add-domainname-option-to-slirp-s-DHCP-server.patch,
d/p/ubuntu/0002-slirp-Add-classless-static-routes-support-to-DHCP-se.patch:
Add domainname option and classless static routes support to the user
networking's DHCP server