ubuntu/+source/libvirt:ubuntu/cosmic-updates

Last commit made on 2019-07-08
Get this branch:
git clone -b ubuntu/cosmic-updates https://git.launchpad.net/ubuntu/+source/libvirt
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/cosmic-updates
Repository:
lp:ubuntu/+source/libvirt

Recent commits

f9e4f9b... by Marc Deslauriers on 2019-07-02

Import patches-unapplied version 4.6.0-2ubuntu3.8 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 007028b36985cf6582b9d5f324225a49a5d43284

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

007028b... by Marc Deslauriers on 2019-06-17

Import patches-unapplied version 4.6.0-2ubuntu3.7 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 47a776f028b35c13537d274ee4b4f8efcac3ef8c

New changelog entries:
  * SECURITY UPDATE: privilege escalation via incorrect socket permissions
    - debian/patches/CVE-2019-10132-1.patch: reject clients unless their
      UID matches the current UID in src/admin/admin_server_dispatch.c.
    - debian/patches/CVE-2019-10132-2.patch: restrict sockets to mode 0600
      in src/locking/virtlockd-admin.socket.in,
      src/locking/virtlockd.socket.in.
    - debian/patches/CVE-2019-10132-3.patch: restrict sockets to mode 0600
      in src/logging/virtlogd-admin.socket.in,
      src/logging/virtlogd.socket.in.
    - CVE-2019-10132

47a776f... by Christian Ehrhardt  on 2019-05-28

Import patches-unapplied version 4.6.0-2ubuntu3.6 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 07c3a780ee0565fb120a1c4909434ffbbbb9c4b9

New changelog entries:
  * d/p/ubuntu/lp-1830268-refresh-capabilities-on-KVM-nesting.patch: fix
    consideration of VMX flag (LP: #1830268)

07c3a78... by Marc Deslauriers on 2019-05-14

Import patches-unapplied version 4.6.0-2ubuntu3.5 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: ec52b7994b5249e44528a3080cbe1537f7c0fcc7

New changelog entries:
  * SECURITY UPDATE: Add support for md-clear functionality
    - debian/patches/md-clear.patch: Define md-clear CPUID bit in
      src/cpu/cpu_map.xml.
    - CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

ec52b79... by Marc Deslauriers on 2019-03-13

Import patches-unapplied version 4.6.0-2ubuntu3.4 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: c1f58955257527525b1c60494ae9e6c57ca2eef7

New changelog entries:
  * SECURITY UPDATE: NULL pointer dereference in qemuAgentGetInterfaces
    - debian/patches/CVE-2019-3840.patch: require a reply in
      src/qemu/qemu_agent.c.
    - CVE-2019-3840

c1f5895... by Christian Ehrhardt  on 2019-01-31

Import patches-unapplied version 4.6.0-2ubuntu3.3 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: bab50e8f8aa25b02a238e2417525269d3d30672f

New changelog entries:
  * d/p/ubuntu/lp-1811198-utils-Remove-arbitrary-limit-on-socket_id-core_id
    .patch: fix arm servers with high core_id (LP: #1811198)
  * d/p/ubuntu/lp-1771662-*: fix assumption that all VFs have PFs assigned
    (LP: #1771662)

bab50e8... by Christian Ehrhardt  on 2018-12-06

Import patches-unapplied version 4.6.0-2ubuntu3.2 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 1e9587efb88a7b4b05f9a0cd3d3fcd629600e361

New changelog entries:
  * d/p/ubuntu/lp1787405-0008-qemu-mdev-Use-vfio-pci-display-property-only
    -with-vf.patch: fix handling of non PCI vfio display propery (part
    of LP: #1787405)

1e9587e... by Christian Ehrhardt  on 2018-11-09

Import patches-unapplied version 4.6.0-2ubuntu3.1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 152ac4affa8a4a77576f12c9b3c321c585c333a0

New changelog entries:
  * debian/patches/ubuntu/lp1787405-*: Support guest dedicated Crypto
    Adapters on s390x (LP: #1787405)

152ac4a... by Christian Ehrhardt  on 2018-08-27

Import patches-unapplied version 4.6.0-2ubuntu3 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 6c8707f77299d237bf8b677c990af2c7d348fab8

New changelog entries:
  * d/p/ubuntu-aa/lp-1788603-fix-ptrace-rules-with-kernel-4.18.patch:
    avoid issues with newer kernels >=4.18 (LP: #1788603)

6c8707f... by Christian Ehrhardt  on 2018-08-21

Import patches-unapplied version 4.6.0-2ubuntu2 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 6cd6f56f25bd98a7f3380ba16b871af81e690f2e

New changelog entries:
  * Fix an issue where guests with plenty of hostdevs attached where detected
    as not shut down due to the kernel needing more time to free up
    resources (LP: #1788226)
    - d/p/ubuntu/lp-1788226-wait-longer-5-30s-on-hard-shutdown.patch
    - d/p/ubuntu/lp-1788226-wait-longer-on-kill-per-assigned-Hostdev.patch