Branches for Oneiric

Author: Jamie Strandboge
Revision Date: 2011-07-05 19:24:52 UTC

* SECURITY UPDATE: fix to validate virtqueue in and out requests from the
  guests
  - debian/patches/CVE-2011-2212-virtqueue-indirect-overflow.patch: update
    hw/virtio.c to verify the length of indirect descriptors in
    virtqueue_pop() and virtqueue_avail_bytes()
  - CVE-2011-2212
  - LP: #806167
* SECURITY UPDATE: validate virtio_queue_notify() is non-negative
  - virtio-guard-against-negative-vq-notifies-CVE-2011-2512.diff: update
    to move comparison out to syborg_virtio_writel(), virtio_ioport_write()
    and virtio_queue_notify_vq() and don't call common virtio code if
    virtqueue number is invalid. Patch from Debian.
  - CVE-2011-2512
  - LP: #806166