Author: Ubuntu Git Importer
Author Date: 2019-12-06 16:54:06 UTC

DSC file for 5.6.0-3

Author: Guido Günther
Author Date: 2019-11-27 10:13:51 UTC

Import patches-applied version 5.6.0-3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 7acd12eddc38bcb7bd1dc7387102fb2b208721c9
Unapplied parent: cfb9b65ae2f7ebf11ae5fb7060e17b3e43fca659

New changelog entries:
  * Team upload.
  [ Christian Ehrhardt ]
  * Move qemu, lxc, uml, vbox and xen connection drivers into separate
    packages. This reduces the dependencies pulled into default installations.
    (Closes: #901940)
  * d/copyright: Update
  [ Guido Günther ]
  * [362bec6] autopkgtest: Adjust to new path

Author: Guido Günther
Author Date: 2019-11-27 10:13:51 UTC

Import patches-unapplied version 5.6.0-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4182177845334d4e34067e5166127f2361068563

New changelog entries:
  * Team upload.
  [ Christian Ehrhardt ]
  * Move qemu, lxc, uml, vbox and xen connection drivers into separate
    packages. This reduces the dependencies pulled into default installations.
    (Closes: #901940)
  * d/copyright: Update
  [ Guido Günther ]
  * [362bec6] autopkgtest: Adjust to new path

Author: Ubuntu Git Importer
Author Date: 2019-11-22 11:29:07 UTC

DSC file for 1.3.1-1ubuntu10.29

Author: Matthew Ruffell
Author Date: 2019-10-30 21:52:41 UTC

Import patches-applied version 1.3.1-1ubuntu10.29 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 8a92e47f581e49e40a4c7020e22713f3871331d8
Unapplied parent: 7280ba21ea6c68b2cc9953ae266304affa9f5615

New changelog entries:
  * debian/patches/lp1681839-*.patch: Fix block commit timeout
    races, and ensure that once commit has reached 100%, timeouts
    no longer apply. (LP: #1681839)

Author: Matthew Ruffell
Author Date: 2019-10-30 21:52:41 UTC

Import patches-applied version 1.3.1-1ubuntu10.29 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 8a92e47f581e49e40a4c7020e22713f3871331d8
Unapplied parent: 7280ba21ea6c68b2cc9953ae266304affa9f5615

New changelog entries:
  * debian/patches/lp1681839-*.patch: Fix block commit timeout
    races, and ensure that once commit has reached 100%, timeouts
    no longer apply. (LP: #1681839)

Author: Rafael David Tinoco
Author Date: 2019-11-20 11:52:51 UTC

Import patches-applied version 4.0.0-1ubuntu8.14 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 446db04a124234e1b56ca6ef9210f9cc4ee4b87d
Unapplied parent: a0fe5ba2d31ffd80de527396f4106822a1cd56f2

New changelog entries:
  * debian/rules: libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

Author: Rafael David Tinoco
Author Date: 2019-11-20 11:52:51 UTC

Import patches-unapplied version 4.0.0-1ubuntu8.14 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Upload parent: 34a8dc32aa60f999166383304a5c5c3529b2e04c

Author: Rafael David Tinoco
Author Date: 2019-11-20 11:52:51 UTC

Import patches-unapplied version 4.0.0-1ubuntu8.14 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Upload parent: 34a8dc32aa60f999166383304a5c5c3529b2e04c

Author: Rafael David Tinoco
Author Date: 2019-11-20 11:52:51 UTC

Import patches-applied version 4.0.0-1ubuntu8.14 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 446db04a124234e1b56ca6ef9210f9cc4ee4b87d
Unapplied parent: a0fe5ba2d31ffd80de527396f4106822a1cd56f2

New changelog entries:
  * debian/rules: libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

Author: Rafael David Tinoco
Author Date: 2019-11-20 11:52:51 UTC

Import patches-applied version 4.0.0-1ubuntu8.14 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 446db04a124234e1b56ca6ef9210f9cc4ee4b87d
Unapplied parent: a0fe5ba2d31ffd80de527396f4106822a1cd56f2

New changelog entries:
  * debian/rules: libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

Author: Rafael David Tinoco
Author Date: 2019-11-20 11:52:51 UTC

Import patches-unapplied version 4.0.0-1ubuntu8.14 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Upload parent: 34a8dc32aa60f999166383304a5c5c3529b2e04c

Author: Rafael David Tinoco
Author Date: 2019-11-19 00:56:29 UTC

Import patches-unapplied version 5.0.0-1ubuntu2.6 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Upload parent: a807c75ccdbb86a12f5fc2bda854011bed313b6b

Author: Rafael David Tinoco
Author Date: 2019-11-19 00:56:29 UTC

Import patches-applied version 5.0.0-1ubuntu2.6 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 0cf4df30946aa67febd7e5f1436db9544f68a8c3
Unapplied parent: 71b22be9e4d5172b0a15a471879c6fd519c7352f

New changelog entries:
  * debian/rules: libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

Author: Rafael David Tinoco
Author Date: 2019-11-19 00:56:29 UTC

Import patches-applied version 5.0.0-1ubuntu2.6 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 0cf4df30946aa67febd7e5f1436db9544f68a8c3
Unapplied parent: 71b22be9e4d5172b0a15a471879c6fd519c7352f

New changelog entries:
  * debian/rules: libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

Author: Rafael David Tinoco
Author Date: 2019-11-19 00:56:29 UTC

Import patches-unapplied version 5.0.0-1ubuntu2.6 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Upload parent: a807c75ccdbb86a12f5fc2bda854011bed313b6b

Author: Rafael David Tinoco
Author Date: 2019-11-19 00:56:29 UTC

Import patches-unapplied version 5.0.0-1ubuntu2.6 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Upload parent: a807c75ccdbb86a12f5fc2bda854011bed313b6b

Author: Rafael David Tinoco
Author Date: 2019-11-19 00:56:29 UTC

Import patches-applied version 5.0.0-1ubuntu2.6 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 0cf4df30946aa67febd7e5f1436db9544f68a8c3
Unapplied parent: 71b22be9e4d5172b0a15a471879c6fd519c7352f

New changelog entries:
  * debian/rules: libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

Author: Matthew Ruffell
Author Date: 2019-10-30 21:52:41 UTC

Import patches-unapplied version 1.3.1-1ubuntu10.29 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Upload parent: a5a1fd6ace450bf5593c507e14a739830c21cffc

Author: Matthew Ruffell
Author Date: 2019-10-30 21:52:41 UTC

Import patches-unapplied version 1.3.1-1ubuntu10.29 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Upload parent: a5a1fd6ace450bf5593c507e14a739830c21cffc

Author: Guido Günther
Author Date: 2019-06-12 08:13:38 UTC

Import patches-applied version 3.0.0-4+deb9u4 to applied/debian/stretch

Imported using git-ubuntu import.

Changelog parent: deea180f2a31ccb272cd64a0f2b838267779d26f
Unapplied parent: 5cc463a1a87f5b8745db8d5e6ed098dd4d66fa0b

New changelog entries:
  * Fix CVEs related to privilege escalations on R/O connections.
    - CVE-2019-10161:
      CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc-.patch
    - CVE-2019-10167:
      api-disallow-virConnectGetDomainCapabilities-on-read-only.patch
  * cpu_map: Define md-clear CPUID bit.
    CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * Add spec-ctrl and ibpb CPU features and ibrs CPU models.
    CVE-2017-5753, CVE-2017-5715
  * Add ssbd CPU feature.
    CVE-2018-3639

Author: Guido Günther
Author Date: 2019-06-12 08:13:38 UTC

Import patches-unapplied version 3.0.0-4+deb9u4 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 8b68b09941cb86ad99a9d37da02fea77b20db7c3

New changelog entries:
  * Fix CVEs related to privilege escalations on R/O connections.
    - CVE-2019-10161:
      CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc-.patch
    - CVE-2019-10167:
      api-disallow-virConnectGetDomainCapabilities-on-read-only.patch
  * cpu_map: Define md-clear CPUID bit.
    CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
  * Add spec-ctrl and ibpb CPU features and ibrs CPU models.
    CVE-2017-5753, CVE-2017-5715
  * Add ssbd CPU feature.
    CVE-2018-3639

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-applied version 5.4.0-0ubuntu5 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: f15220d6c6409ea3f6296d3c47020b021cce3914
Unapplied parent: 1f717068de9c0386d3510aa48c5242085b9dce8e

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-applied version 5.4.0-0ubuntu5 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: f15220d6c6409ea3f6296d3c47020b021cce3914
Unapplied parent: 1f717068de9c0386d3510aa48c5242085b9dce8e

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-unapplied version 5.4.0-0ubuntu5 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 7ec96dbcdb4a2aa965e0b9ba730e3506cd5f9581

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-unapplied version 5.4.0-0ubuntu5 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 7ec96dbcdb4a2aa965e0b9ba730e3506cd5f9581

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-applied version 5.4.0-0ubuntu5 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: f15220d6c6409ea3f6296d3c47020b021cce3914
Unapplied parent: 1f717068de9c0386d3510aa48c5242085b9dce8e

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-unapplied version 5.4.0-0ubuntu5 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 7ec96dbcdb4a2aa965e0b9ba730e3506cd5f9581

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-applied version 5.4.0-0ubuntu5 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: f15220d6c6409ea3f6296d3c47020b021cce3914
Unapplied parent: 1f717068de9c0386d3510aa48c5242085b9dce8e

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-unapplied version 5.4.0-0ubuntu5 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 7ec96dbcdb4a2aa965e0b9ba730e3506cd5f9581

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-unapplied version 5.4.0-0ubuntu5 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 7ec96dbcdb4a2aa965e0b9ba730e3506cd5f9581

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-unapplied version 5.4.0-0ubuntu5 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 7ec96dbcdb4a2aa965e0b9ba730e3506cd5f9581

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-applied version 5.4.0-0ubuntu5 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: f15220d6c6409ea3f6296d3c47020b021cce3914
Unapplied parent: 1f717068de9c0386d3510aa48c5242085b9dce8e

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Matthias Klose
Author Date: 2019-09-05 11:00:53 UTC

Import patches-applied version 5.4.0-0ubuntu5 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: f15220d6c6409ea3f6296d3c47020b021cce3914
Unapplied parent: 1f717068de9c0386d3510aa48c5242085b9dce8e

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

Author: Marc Deslauriers
Author Date: 2019-07-02 12:52:01 UTC

Import patches-applied version 4.6.0-2ubuntu3.8 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 8ec51c288f895e664330a5c09b1b00638efd0e82
Unapplied parent: 58a0af5ce496bad4507a89512804c0d5b4c74834

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 12:52:01 UTC

Import patches-unapplied version 4.6.0-2ubuntu3.8 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 007028b36985cf6582b9d5f324225a49a5d43284

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 12:49:48 UTC

Import patches-applied version 5.0.0-1ubuntu2.4 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 035542cb09f41de0c5dab9c4d3c46b5faebc667d
Unapplied parent: 7ecaf3bf6cd11750a77946200fb2375a51737021

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 12:52:01 UTC

Import patches-unapplied version 4.6.0-2ubuntu3.8 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 007028b36985cf6582b9d5f324225a49a5d43284

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 13:22:37 UTC

Import patches-unapplied version 1.3.1-1ubuntu10.27 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: d7d6c91c7e0ea56dae910b86adbe9f09779fec5e

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167

Author: Marc Deslauriers
Author Date: 2019-07-02 13:22:37 UTC

Import patches-unapplied version 1.3.1-1ubuntu10.27 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: d7d6c91c7e0ea56dae910b86adbe9f09779fec5e

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167

Author: Marc Deslauriers
Author Date: 2019-07-02 12:52:01 UTC

Import patches-applied version 4.6.0-2ubuntu3.8 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 8ec51c288f895e664330a5c09b1b00638efd0e82
Unapplied parent: 58a0af5ce496bad4507a89512804c0d5b4c74834

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 13:22:37 UTC

Import patches-applied version 1.3.1-1ubuntu10.27 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 30e2dbc018376f154ec31baaec2c7c5bc6c9deb6
Unapplied parent: 3b38cea087d902681948ca5f9960438ae5ce2fd8

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167

Author: Marc Deslauriers
Author Date: 2019-07-02 12:52:01 UTC

Import patches-applied version 4.6.0-2ubuntu3.8 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 8ec51c288f895e664330a5c09b1b00638efd0e82
Unapplied parent: 58a0af5ce496bad4507a89512804c0d5b4c74834

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 12:52:01 UTC

Import patches-unapplied version 4.6.0-2ubuntu3.8 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 007028b36985cf6582b9d5f324225a49a5d43284

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 13:22:37 UTC

Import patches-applied version 1.3.1-1ubuntu10.27 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 30e2dbc018376f154ec31baaec2c7c5bc6c9deb6
Unapplied parent: 3b38cea087d902681948ca5f9960438ae5ce2fd8

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167

Author: Marc Deslauriers
Author Date: 2019-07-02 13:19:33 UTC

Import patches-applied version 4.0.0-1ubuntu8.12 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 944cf9654504973b33f6799d0a99a5e84ab92517
Unapplied parent: e05b516669a7f522c796ced5e80650fb8356ec1e

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167

Author: Marc Deslauriers
Author Date: 2019-07-02 12:49:48 UTC

Import patches-unapplied version 5.0.0-1ubuntu2.4 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 0652a7ccd4a1ffee2034c58b69b3bb7781f29240

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

Author: Marc Deslauriers
Author Date: 2019-07-02 13:19:33 UTC

Import patches-unapplied version 4.0.0-1ubuntu8.12 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 8bfed21f4192f4cccc531994dbff47defdfaba93

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167

Author: Guido Günther
Author Date: 2019-06-17 17:05:40 UTC

Import patches-unapplied version 5.0.0-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 6ca3ade124ceebde6ceb9c3c193995fc54da208d

New changelog entries:
  * [0fdc2af] Fix multiple CVEs related to privilege escalations on R/O
    connections.
    - CVE-2019-10161:
      CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc-.patch
    - CVE-2019-10166:
      api-disallow-virDomainManagedSaveDefineXML-on-read-only-c.patch
    - CVE-2019-10167:
      api-disallow-virConnectGetDomainCapabilities-on-read-only.patch
    - CVE-2019-10168:
      api-disallow-virConnect-HypervisorCPU-on-read-only-connec.patch
  * Include /etc/pki/qemu in apparmor (Closes: #930100)

Author: Guido Günther
Author Date: 2019-06-17 17:05:40 UTC

Import patches-applied version 5.0.0-4 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 768f9a0e034ec64fdf42d0cdd114d5ff7531d34c
Unapplied parent: 4f4294ad981e3482c1d5b1984acab3c643e20fbb

New changelog entries:
  * [0fdc2af] Fix multiple CVEs related to privilege escalations on R/O
    connections.
    - CVE-2019-10161:
      CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc-.patch
    - CVE-2019-10166:
      api-disallow-virDomainManagedSaveDefineXML-on-read-only-c.patch
    - CVE-2019-10167:
      api-disallow-virConnectGetDomainCapabilities-on-read-only.patch
    - CVE-2019-10168:
      api-disallow-virConnect-HypervisorCPU-on-read-only-connec.patch
  * Include /etc/pki/qemu in apparmor (Closes: #930100)

Author: Christian Ehrhardt 
Author Date: 2019-05-28 05:59:48 UTC

Import patches-applied version 4.6.0-2ubuntu3.6 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 3b124c26be00686cb1a42dac4088a1cc0cfe9f14
Unapplied parent: af295d6d611ee77a0322a31f50767e3e2b2bd3d5

New changelog entries:
  * d/p/ubuntu/lp-1830268-refresh-capabilities-on-KVM-nesting.patch: fix
    consideration of VMX flag (LP: #1830268)

Author: Christian Ehrhardt 
Author Date: 2019-05-28 05:59:48 UTC

Import patches-unapplied version 4.6.0-2ubuntu3.6 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 07c3a780ee0565fb120a1c4909434ffbbbb9c4b9

New changelog entries:
  * d/p/ubuntu/lp-1830268-refresh-capabilities-on-KVM-nesting.patch: fix
    consideration of VMX flag (LP: #1830268)

Author: Steve Beattie
Author Date: 2019-05-16 19:56:28 UTC

Import patches-unapplied version 1.2.2-0ubuntu13.1.28 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 12b2473e7dacda9e540c62883c5fa02876da9b3d

New changelog entries:
  * SECURITY UPDATE: Add support for md-clear functionality
    - debian/patches/md-clear.patch: Define md-clear CPUID bit in
      src/cpu/cpu_map.xml.
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

Author: Steve Beattie
Author Date: 2019-05-16 19:56:28 UTC

Import patches-applied version 1.2.2-0ubuntu13.1.28 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 077dbee9c2deeaa2cc54876784d05c0c83ce9171
Unapplied parent: 6d57cf4de79d0aeab372bb25a1f5129bf306b4e3

New changelog entries:
  * SECURITY UPDATE: Add support for md-clear functionality
    - debian/patches/md-clear.patch: Define md-clear CPUID bit in
      src/cpu/cpu_map.xml.
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

Author: Steve Beattie
Author Date: 2019-05-16 19:56:28 UTC

Import patches-unapplied version 1.2.2-0ubuntu13.1.28 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 12b2473e7dacda9e540c62883c5fa02876da9b3d

New changelog entries:
  * SECURITY UPDATE: Add support for md-clear functionality
    - debian/patches/md-clear.patch: Define md-clear CPUID bit in
      src/cpu/cpu_map.xml.
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

Author: Steve Beattie
Author Date: 2019-05-16 19:56:28 UTC

Import patches-applied version 1.2.2-0ubuntu13.1.28 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 077dbee9c2deeaa2cc54876784d05c0c83ce9171
Unapplied parent: 6d57cf4de79d0aeab372bb25a1f5129bf306b4e3

New changelog entries:
  * SECURITY UPDATE: Add support for md-clear functionality
    - debian/patches/md-clear.patch: Define md-clear CPUID bit in
      src/cpu/cpu_map.xml.
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

Author: Steve Beattie
Author Date: 2019-05-16 19:56:28 UTC

Import patches-applied version 1.2.2-0ubuntu13.1.28 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 077dbee9c2deeaa2cc54876784d05c0c83ce9171
Unapplied parent: 6d57cf4de79d0aeab372bb25a1f5129bf306b4e3

New changelog entries:
  * SECURITY UPDATE: Add support for md-clear functionality
    - debian/patches/md-clear.patch: Define md-clear CPUID bit in
      src/cpu/cpu_map.xml.
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

Author: Steve Beattie
Author Date: 2019-05-16 19:56:28 UTC

Import patches-unapplied version 1.2.2-0ubuntu13.1.28 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 12b2473e7dacda9e540c62883c5fa02876da9b3d

New changelog entries:
  * SECURITY UPDATE: Add support for md-clear functionality
    - debian/patches/md-clear.patch: Define md-clear CPUID bit in
      src/cpu/cpu_map.xml.
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

Author: Guido Günther
Author Date: 2019-04-22 10:20:36 UTC

Import patches-applied version 5.2.0-2 to applied/debian/experimental

Imported using git-ubuntu import.

Changelog parent: f2e2a8ebca6f751e2c45074741d4d66f04f5c137
Unapplied parent: 294eed45d72656830fc3bb0f47f200c67342a820

New changelog entries:
  [ Guido Günther ]
  * [1ec90c0] d/compat: Switch to debhelper level 12
      * [fb6dd18] d/rules: s/no-restart-on-upgrade/no-stop-on-upgrade/
      * [3764b71] d/rules: --prallel not needed anymore
      * [1d92095] d/control: Add ${misc:Pre-Depends} for
        libvirt-daemon-system. This makes sure we pull in recent enough
        init-system-helpers
  * [02a155b] d/rules: Switch to dh_installsystemd
    dh_systemd_start is no longer used.
  * [bcad111] d/control: Fix typo
  * [8609192] d/control: Drop Debian revision on iptables build-dep. Any
    version greater than 1.8.1 will do.
  * [447dd58] libnss-libvirt: Install libnss_libvirt-guest as well
    (Closes: #910288)
  * [4fb7d11] d/control: Build-depend on libglusterfs-dev.
    Since this is a recent addition we can drop the versioned dependency.
    (Closes: #919663)
  * [7b4ffeb] d/rules: Newer debhelper puts the libs into multi arch dirs.
    There's no need to move them manually anymore.
  [ Andrea Bolognani ]
  * [dd9cdaa] Use HTTPS for all URLs.
    This gets rid of the debian-watch-uses-insecure-uri informational Lintian
    tag, and then some.
  * [faaec12] Minimize upstream's signing key.
    This gets rid of the public-upstream-key-not-minimal informational Lintian
    tag.
  * [8a0e6f1] Remove Priority field from binary packages.
    This gets rid of the binary-control-field-duplicates-source informational
    Lintian tag.
  [ Christian Ehrhardt ]
  * [08f3a23] d/libvirt-clients.manpages: add virkeycode and virkeyname man
    pages.
  * [0f359de] d/rules: mv logrotate files to silence dh_missing
  * [f36ca33] dh_missing: ignore warning on libtool .la file

Author: Guido Günther
Author Date: 2019-04-22 10:20:36 UTC

Import patches-unapplied version 5.2.0-2 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 2d7ea0099eed3bc9a012bab7c788fabd31e92b1c

New changelog entries:
  [ Guido Günther ]
  * [1ec90c0] d/compat: Switch to debhelper level 12
      * [fb6dd18] d/rules: s/no-restart-on-upgrade/no-stop-on-upgrade/
      * [3764b71] d/rules: --prallel not needed anymore
      * [1d92095] d/control: Add ${misc:Pre-Depends} for
        libvirt-daemon-system. This makes sure we pull in recent enough
        init-system-helpers
  * [02a155b] d/rules: Switch to dh_installsystemd
    dh_systemd_start is no longer used.
  * [bcad111] d/control: Fix typo
  * [8609192] d/control: Drop Debian revision on iptables build-dep. Any
    version greater than 1.8.1 will do.
  * [447dd58] libnss-libvirt: Install libnss_libvirt-guest as well
    (Closes: #910288)
  * [4fb7d11] d/control: Build-depend on libglusterfs-dev.
    Since this is a recent addition we can drop the versioned dependency.
    (Closes: #919663)
  * [7b4ffeb] d/rules: Newer debhelper puts the libs into multi arch dirs.
    There's no need to move them manually anymore.
  [ Andrea Bolognani ]
  * [dd9cdaa] Use HTTPS for all URLs.
    This gets rid of the debian-watch-uses-insecure-uri informational Lintian
    tag, and then some.
  * [faaec12] Minimize upstream's signing key.
    This gets rid of the public-upstream-key-not-minimal informational Lintian
    tag.
  * [8a0e6f1] Remove Priority field from binary packages.
    This gets rid of the binary-control-field-duplicates-source informational
    Lintian tag.
  [ Christian Ehrhardt ]
  * [08f3a23] d/libvirt-clients.manpages: add virkeycode and virkeyname man
    pages.
  * [0f359de] d/rules: mv logrotate files to silence dh_missing
  * [f36ca33] dh_missing: ignore warning on libtool .la file

Author: Christian Ehrhardt 
Author Date: 2019-02-12 10:27:14 UTC

Import patches-unapplied version 5.0.0-1ubuntu2 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 05a27bdefe16dc99ba040401a0c4e408e755f211

New changelog entries:
  * Implement further apparmor rules for usage of gl enabled
    graphics (LP: #1815452)
    - d/p/ubuntu-aa/lp-1815452-more-gl-rules.patch
    - d/p/ubuntu-aa/lp-1815452-virt-aa-helper-rule.patch
  * Implement further apparmor rules for usage of gl enabled
    graphics with nvidia cards (LP: #1817943)
    - d/p/ubuntu-aa/lp-1817943-nvidia-gl-rules.patch
    - d/p/ubuntu-aa/lp-1817943-devices-in-sysfs.patch
  * d/p/ubuntu-aa/lp-1804766-*: updated to the upstream accepted
    version (no functional change, LP: 1804766)

Author: Christian Ehrhardt 
Author Date: 2019-02-12 10:27:14 UTC

Import patches-applied version 5.0.0-1ubuntu2 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 40d7b7dd1048654d8902fbededd446c2aaf7abfb
Unapplied parent: bd6b290cf77c97d6438fe5c4f1ecdfaf4e9ccec8

New changelog entries:
  * Implement further apparmor rules for usage of gl enabled
    graphics (LP: #1815452)
    - d/p/ubuntu-aa/lp-1815452-more-gl-rules.patch
    - d/p/ubuntu-aa/lp-1815452-virt-aa-helper-rule.patch
  * Implement further apparmor rules for usage of gl enabled
    graphics with nvidia cards (LP: #1817943)
    - d/p/ubuntu-aa/lp-1817943-nvidia-gl-rules.patch
    - d/p/ubuntu-aa/lp-1817943-devices-in-sysfs.patch
  * d/p/ubuntu-aa/lp-1804766-*: updated to the upstream accepted
    version (no functional change, LP: 1804766)

Author: Christian Ehrhardt 
Author Date: 2018-08-27 08:57:57 UTC

Import patches-unapplied version 4.6.0-2ubuntu3 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 6c8707f77299d237bf8b677c990af2c7d348fab8

New changelog entries:
  * d/p/ubuntu-aa/lp-1788603-fix-ptrace-rules-with-kernel-4.18.patch:
    avoid issues with newer kernels >=4.18 (LP: #1788603)

Author: Christian Ehrhardt 
Author Date: 2018-08-27 08:57:57 UTC

Import patches-applied version 4.6.0-2ubuntu3 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: ec1382bc26e777b9ae6f542fdfbd9da675a1e977
Unapplied parent: 171ae55c328a7d830aa26d860680ad6d9333bd33

New changelog entries:
  * d/p/ubuntu-aa/lp-1788603-fix-ptrace-rules-with-kernel-4.18.patch:
    avoid issues with newer kernels >=4.18 (LP: #1788603)

Author: Guido Günther
Author Date: 2018-03-12 19:51:52 UTC

Import patches-applied version 1.2.9-9+deb8u5 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: 204e5da01831859c1aabab372bff70d3ff686769
Unapplied parent: ac7f47bd74877f44c694b850d3211ca6655de236

New changelog entries:
  * Switch gbp.conf to jessie
  * Rediff patches
    to avoid diff noise when using gbp-pq.
  * CVE-2018-5748: qemu: avoid denial of service reading from QEMU monitor
    (Closes: #887700)
  * CVE-2018-1064: qemu: avoid denial of service reading from QEMU guest agent

Author: Guido Günther
Author Date: 2018-03-12 19:51:52 UTC

Import patches-unapplied version 1.2.9-9+deb8u5 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 756c3dec64dc822c706de2f1bcbd000015ef151e

New changelog entries:
  * Switch gbp.conf to jessie
  * Rediff patches
    to avoid diff noise when using gbp-pq.
  * CVE-2018-5748: qemu: avoid denial of service reading from QEMU monitor
    (Closes: #887700)
  * CVE-2018-1064: qemu: avoid denial of service reading from QEMU guest agent

Author: Marc Deslauriers
Author Date: 2018-05-23 17:23:59 UTC

Import patches-unapplied version 3.6.0-1ubuntu6.8 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 7e0d43bd0624eb3d652ceb4e64ff368fea6b620f

New changelog entries:
  * SECURITY UPDATE: QEMU monitor DoS
    - debian/patches/CVE-2018-1064.patch: add size limit to
      src/qemu/qemu_agent.c.
    - CVE-2018-1064
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-1.patch: define the 'ssbd' CPUID feature
      bit in src/cpu/cpu_map.xml.
    - debian/patches/CVE-2018-3639-2.patch: define the 'virt-ssbd' CPUID
      feature bit in src/cpu/cpu_map.xml.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 17:23:59 UTC

Import patches-applied version 3.6.0-1ubuntu6.8 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 3a908b9b722d319f6b4b58ccea91da1e1dc78288
Unapplied parent: ab2d15017daac5101c665b02bbd453ea53f581a0

New changelog entries:
  * SECURITY UPDATE: QEMU monitor DoS
    - debian/patches/CVE-2018-1064.patch: add size limit to
      src/qemu/qemu_agent.c.
    - CVE-2018-1064
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-1.patch: define the 'ssbd' CPUID feature
      bit in src/cpu/cpu_map.xml.
    - debian/patches/CVE-2018-3639-2.patch: define the 'virt-ssbd' CPUID
      feature bit in src/cpu/cpu_map.xml.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 17:23:59 UTC

Import patches-applied version 3.6.0-1ubuntu6.8 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 3a908b9b722d319f6b4b58ccea91da1e1dc78288
Unapplied parent: ab2d15017daac5101c665b02bbd453ea53f581a0

New changelog entries:
  * SECURITY UPDATE: QEMU monitor DoS
    - debian/patches/CVE-2018-1064.patch: add size limit to
      src/qemu/qemu_agent.c.
    - CVE-2018-1064
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-1.patch: define the 'ssbd' CPUID feature
      bit in src/cpu/cpu_map.xml.
    - debian/patches/CVE-2018-3639-2.patch: define the 'virt-ssbd' CPUID
      feature bit in src/cpu/cpu_map.xml.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 17:23:59 UTC

Import patches-applied version 3.6.0-1ubuntu6.8 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 3a908b9b722d319f6b4b58ccea91da1e1dc78288
Unapplied parent: ab2d15017daac5101c665b02bbd453ea53f581a0

New changelog entries:
  * SECURITY UPDATE: QEMU monitor DoS
    - debian/patches/CVE-2018-1064.patch: add size limit to
      src/qemu/qemu_agent.c.
    - CVE-2018-1064
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-1.patch: define the 'ssbd' CPUID feature
      bit in src/cpu/cpu_map.xml.
    - debian/patches/CVE-2018-3639-2.patch: define the 'virt-ssbd' CPUID
      feature bit in src/cpu/cpu_map.xml.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 17:23:59 UTC

Import patches-unapplied version 3.6.0-1ubuntu6.8 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 7e0d43bd0624eb3d652ceb4e64ff368fea6b620f

New changelog entries:
  * SECURITY UPDATE: QEMU monitor DoS
    - debian/patches/CVE-2018-1064.patch: add size limit to
      src/qemu/qemu_agent.c.
    - CVE-2018-1064
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-1.patch: define the 'ssbd' CPUID feature
      bit in src/cpu/cpu_map.xml.
    - debian/patches/CVE-2018-3639-2.patch: define the 'virt-ssbd' CPUID
      feature bit in src/cpu/cpu_map.xml.
    - CVE-2018-3639

Author: Marc Deslauriers
Author Date: 2018-05-23 17:23:59 UTC

Import patches-unapplied version 3.6.0-1ubuntu6.8 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 7e0d43bd0624eb3d652ceb4e64ff368fea6b620f

New changelog entries:
  * SECURITY UPDATE: QEMU monitor DoS
    - debian/patches/CVE-2018-1064.patch: add size limit to
      src/qemu/qemu_agent.c.
    - CVE-2018-1064
  * SECURITY UPDATE: Speculative Store Bypass
    - debian/patches/CVE-2018-3639-1.patch: define the 'ssbd' CPUID feature
      bit in src/cpu/cpu_map.xml.
    - debian/patches/CVE-2018-3639-2.patch: define the 'virt-ssbd' CPUID
      feature bit in src/cpu/cpu_map.xml.
    - CVE-2018-3639

Author: Christian Ehrhardt 
Author Date: 2018-05-11 05:35:09 UTC

Import patches-unapplied version 3.6.0-1ubuntu6.7 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c3ac5262d4265b33e437c94ef9cb2ced0ebbed4c

New changelog entries:
  * Fix nwfilters that set CTRL_IP_LEARNING set to dhcp failing with "An error
    occurred, but the cause is unknown" due to a buffer being too small
    for pcap with TPACKET_V3 enabled (LP: #1758037)
    - debian/patches/ubuntu/lp-1758037-nwfilter-increase-pcap-buffer-size.patch

Author: Christian Ehrhardt 
Author Date: 2018-05-11 05:35:09 UTC

Import patches-applied version 3.6.0-1ubuntu6.7 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 3aecacb3179d87a3b4fa9a3aadeba525acff148a
Unapplied parent: 1eaf27527528d3b91255b166c1d36900815833e2

New changelog entries:
  * Fix nwfilters that set CTRL_IP_LEARNING set to dhcp failing with "An error
    occurred, but the cause is unknown" due to a buffer being too small
    for pcap with TPACKET_V3 enabled (LP: #1758037)
    - debian/patches/ubuntu/lp-1758037-nwfilter-increase-pcap-buffer-size.patch

Author: Christian Ehrhardt 
Author Date: 2018-04-24 09:09:48 UTC

Import patches-applied version 4.0.0-1ubuntu8 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: e1bf81ac32aa5fb195a3b1593dc940f1faba3289
Unapplied parent: 21a533b4afe80d3e58e9ec96d1efab5923d977ae

New changelog entries:
  * Fix clean shut down of guests on system shutdown (LP: #1764668)
    - d/p/ubuntu/lp-1764668-do-not-report-unknown-guests.patch
    - d/p/ubuntu/lp-1764668-fix-check_guests_shutdown-loop.patch

Author: Christian Ehrhardt 
Author Date: 2018-04-24 09:09:48 UTC

Import patches-unapplied version 4.0.0-1ubuntu8 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: b16189187ffd321989b2ea343cf6a5fb7a88df88

New changelog entries:
  * Fix clean shut down of guests on system shutdown (LP: #1764668)
    - d/p/ubuntu/lp-1764668-do-not-report-unknown-guests.patch
    - d/p/ubuntu/lp-1764668-fix-check_guests_shutdown-loop.patch

Author: Ubuntu Git Importer
Author Date: 2018-03-15 18:08:51 UTC

pristine-tar data for libvirt_4.1.0.orig.tar.xz

Author: Ubuntu Git Importer
Author Date: 2018-03-08 15:34:17 UTC

pristine-tar data for libvirt_4.0.0.orig.tar.xz

Author: Christian Ehrhardt 
Author Date: 2017-11-06 15:31:48 UTC

Import patches-unapplied version 2.5.0-3ubuntu5.6 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 2ff08c8200dcae92282fa6e101922960e959b153

New changelog entries:
  * d/p/storage-Don-t-pass-iso-format-to-qemu-img.patch: fix issues in virt
    clone and other users of storage_utils functions by not passing
    iso to qemu-img (LP: #1729858).

Author: Christian Ehrhardt 
Author Date: 2017-11-06 15:31:48 UTC

Import patches-unapplied version 2.5.0-3ubuntu5.6 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 2ff08c8200dcae92282fa6e101922960e959b153

New changelog entries:
  * d/p/storage-Don-t-pass-iso-format-to-qemu-img.patch: fix issues in virt
    clone and other users of storage_utils functions by not passing
    iso to qemu-img (LP: #1729858).

Author: Christian Ehrhardt 
Author Date: 2017-11-06 15:31:48 UTC

Import patches-unapplied version 2.5.0-3ubuntu5.6 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 2ff08c8200dcae92282fa6e101922960e959b153

New changelog entries:
  * d/p/storage-Don-t-pass-iso-format-to-qemu-img.patch: fix issues in virt
    clone and other users of storage_utils functions by not passing
    iso to qemu-img (LP: #1729858).

Author: Christian Ehrhardt 
Author Date: 2017-11-06 15:31:48 UTC

Import patches-applied version 2.5.0-3ubuntu5.6 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: ea0adeda89d37f0cfb143eecf1ccc9ee605df77e
Unapplied parent: 9ba8862aa49ea4e238073a57aa369f8ea519abc6

New changelog entries:
  * d/p/storage-Don-t-pass-iso-format-to-qemu-img.patch: fix issues in virt
    clone and other users of storage_utils functions by not passing
    iso to qemu-img (LP: #1729858).

Author: Christian Ehrhardt 
Author Date: 2017-11-06 15:31:48 UTC

Import patches-applied version 2.5.0-3ubuntu5.6 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: ea0adeda89d37f0cfb143eecf1ccc9ee605df77e
Unapplied parent: 9ba8862aa49ea4e238073a57aa369f8ea519abc6

New changelog entries:
  * d/p/storage-Don-t-pass-iso-format-to-qemu-img.patch: fix issues in virt
    clone and other users of storage_utils functions by not passing
    iso to qemu-img (LP: #1729858).

Author: Christian Ehrhardt 
Author Date: 2017-11-06 15:31:48 UTC

Import patches-applied version 2.5.0-3ubuntu5.6 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: ea0adeda89d37f0cfb143eecf1ccc9ee605df77e
Unapplied parent: 9ba8862aa49ea4e238073a57aa369f8ea519abc6

New changelog entries:
  * d/p/storage-Don-t-pass-iso-format-to-qemu-img.patch: fix issues in virt
    clone and other users of storage_utils functions by not passing
    iso to qemu-img (LP: #1729858).

Author: Christian Ehrhardt 
Author Date: 2017-09-28 12:18:10 UTC

Import patches-unapplied version 3.6.0-1ubuntu5 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 8110af999e4981c85913920e46edc05f8afe7b04

New changelog entries:
  * d/p/u/gnulib-getopt-posix-Fix-build-failure-when-using-ac_cv_head.patch:
    fix FTBFS with glibc 2.26 (LP: #1718668)

Author: Christian Ehrhardt 
Author Date: 2017-09-28 12:18:10 UTC

Import patches-applied version 3.6.0-1ubuntu5 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: cbd0c3c1c5bc85685194f4803897ee023f995621
Unapplied parent: 438bb828ee2d09bf05cab2e2eb0075275cf039fb

New changelog entries:
  * d/p/u/gnulib-getopt-posix-Fix-build-failure-when-using-ac_cv_head.patch:
    fix FTBFS with glibc 2.26 (LP: #1718668)

Author: Christian Ehrhardt 
Author Date: 2017-09-07 12:22:45 UTC

Import patches-unapplied version 1.2.2-0ubuntu13.1.23 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: fde60f75b56cd0fe62a30f01afe0d9d88df8fc7a
Upload parent: 8fb7152bc88286ceae7c9237ded5722719a96c93

New changelog entries:
  * d/libvirt-bin.init, d/libvirt-bin.upstart: fix waiting for the libvirt
    socket (LP: #1571209)
    - avoid timing out on slow systems (only stop when service is stopped)
    - fix whitespace damage formerly added to d/libvirt-bin.init
    - no more long sleep without announcing to log
    - check socket and service status more often for lower latency on changes
    - fix check if unix_sock_dir path is set in /etc/libvirt/libvirtd.conf
    - fix the upstart service name that is checked

Author: Christian Ehrhardt 
Author Date: 2017-09-07 12:22:45 UTC

Import patches-applied version 1.2.2-0ubuntu13.1.23 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: a56c6d74961a8cd9569138d3265dbbe657b556b9
Unapplied parent: 73b50de382450b3839f7dc6339d8f9eefd717bed

New changelog entries:
  * d/libvirt-bin.init, d/libvirt-bin.upstart: fix waiting for the libvirt
    socket (LP: #1571209)
    - avoid timing out on slow systems (only stop when service is stopped)
    - fix whitespace damage formerly added to d/libvirt-bin.init
    - no more long sleep without announcing to log
    - check socket and service status more often for lower latency on changes
    - fix check if unix_sock_dir path is set in /etc/libvirt/libvirtd.conf
    - fix the upstart service name that is checked

Author: Christian Ehrhardt 
Author Date: 2017-04-26 11:46:42 UTC

Import patches-applied version 2.1.0-1ubuntu9.5 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 7206413ce527914f823b55c038df363d4c2c4045
Unapplied parent: 4e0e26ef7fc5d4bbe041a00c68cb1e78273cee61

New changelog entries:
  * Add missing apparmor profile entries (LP: #1680384)
    - debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
      for vf (hot) attach
    - debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
      parse cmdline of the pid that send the shutdown signal

Author: Christian Ehrhardt 
Author Date: 2017-04-26 11:46:42 UTC

Import patches-applied version 2.1.0-1ubuntu9.5 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 7206413ce527914f823b55c038df363d4c2c4045
Unapplied parent: 4e0e26ef7fc5d4bbe041a00c68cb1e78273cee61

New changelog entries:
  * Add missing apparmor profile entries (LP: #1680384)
    - debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
      for vf (hot) attach
    - debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
      parse cmdline of the pid that send the shutdown signal

Author: Christian Ehrhardt 
Author Date: 2017-04-26 11:46:42 UTC

Import patches-unapplied version 2.1.0-1ubuntu9.5 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 53e038c46a03fe3470bd2fbd567c9c37af0e0f64

New changelog entries:
  * Add missing apparmor profile entries (LP: #1680384)
    - debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
      for vf (hot) attach
    - debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
      parse cmdline of the pid that send the shutdown signal

Author: Christian Ehrhardt 
Author Date: 2017-04-26 11:46:42 UTC

Import patches-applied version 2.1.0-1ubuntu9.5 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 7206413ce527914f823b55c038df363d4c2c4045
Unapplied parent: 4e0e26ef7fc5d4bbe041a00c68cb1e78273cee61

New changelog entries:
  * Add missing apparmor profile entries (LP: #1680384)
    - debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
      for vf (hot) attach
    - debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
      parse cmdline of the pid that send the shutdown signal

Author: Christian Ehrhardt 
Author Date: 2017-04-26 11:46:42 UTC

Import patches-unapplied version 2.1.0-1ubuntu9.5 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 53e038c46a03fe3470bd2fbd567c9c37af0e0f64

New changelog entries:
  * Add missing apparmor profile entries (LP: #1680384)
    - debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
      for vf (hot) attach
    - debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
      parse cmdline of the pid that send the shutdown signal

Author: Christian Ehrhardt 
Author Date: 2017-04-26 11:46:42 UTC

Import patches-unapplied version 2.1.0-1ubuntu9.5 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 53e038c46a03fe3470bd2fbd567c9c37af0e0f64

New changelog entries:
  * Add missing apparmor profile entries (LP: #1680384)
    - debian/patches/ubuntu/apparmor-vfio.patch: apparmor: add /dev/vfio
      for vf (hot) attach
    - debian/patches/ubuntu/apparmor-shutdown.patch: apparmor: allow to
      parse cmdline of the pid that send the shutdown signal

Author: Christian Ehrhardt 
Author Date: 2017-03-21 07:02:37 UTC

Import patches-unapplied version 2.5.0-3ubuntu5 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 92643b33ed6272aa5621767c9f98d930b0710ee8

New changelog entries:
  * d/p/ubuntu/virsh-maxvcpu-fall-back-to-old-command.patch: virsh: maxvcpus:
    Always fall back to the old command if domain caps fail (LP: #1674298)

Author: Christian Ehrhardt 
Author Date: 2017-03-21 07:02:37 UTC

Import patches-applied version 2.5.0-3ubuntu5 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 83641554e066b6ce7bafa4829220e8b482b8a250
Unapplied parent: 0fa3366ea93974c3d38aa642574c095b137c8d80

New changelog entries:
  * d/p/ubuntu/virsh-maxvcpu-fall-back-to-old-command.patch: virsh: maxvcpus:
    Always fall back to the old command if domain caps fail (LP: #1674298)

Author: Stefan Bader
Author Date: 2016-10-06 10:14:05 UTC

Import patches-applied version 2.1.0-1ubuntu9 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 47ddae4e25af92d40031b8cce2fad486079baea6
Unapplied parent: 6857f2efdb390158396d0b0849aec02f4c208135

New changelog entries:
  * Fix libvirt-guest.sh to handle multiple guests (LP: #1591695).

Author: Stefan Bader
Author Date: 2016-10-06 10:14:05 UTC

Import patches-unapplied version 2.1.0-1ubuntu9 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: ac333112199116a4f25e09e4d9753b4d03daf17a

New changelog entries:
  * Fix libvirt-guest.sh to handle multiple guests (LP: #1591695).

Author: William Grant
Author Date: 2016-04-15 02:08:21 UTC

Import patches-unapplied version 1.3.1-1ubuntu10 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 59b8754e4798d03d1e171bd07981e3cf1b21760b

New changelog entries:
  * d/p/u/virt-aa-helper-apparmor-allow-usr-share-AAVMF-too.patch: Allow
    access to /usr/share/AAVMF/** and /usr/share/qemu-efi/** for aarch64 UEFI.
    (LP: #1538882)

Author: William Grant
Author Date: 2016-04-15 02:08:21 UTC

Import patches-applied version 1.3.1-1ubuntu10 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 3029cabbf2e14d69996093b4e8ffa490d243dc20
Unapplied parent: 46db65480ede5d30c0ad2a98269d447d9b700784

New changelog entries:
  * d/p/u/virt-aa-helper-apparmor-allow-usr-share-AAVMF-too.patch: Allow
    access to /usr/share/AAVMF/** and /usr/share/qemu-efi/** for aarch64 UEFI.
    (LP: #1538882)