diff --git a/qemu.spec b/qemu.spec index 348f2f5..8b37e21 100644 --- a/qemu.spec +++ b/qemu.spec @@ -1986,328 +1986,3 @@ getent passwd qemu >/dev/null || \ * Sat Feb 11 2017 Fedora Release Engineering - 2:2.8.0-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild - -* Tue Dec 20 2016 Cole Robinson - 2:2.8.0-1 -- Rebase to qemu-2.8.0 GA - -* Mon Dec 12 2016 Cole Robinson - 2:2.8.0-0.3-rc3 -- Rebase to qemu-2.8.0-rc3 - -* Mon Dec 05 2016 Cole Robinson - 2:2.8.0-0.2-rc2 -- Rebuild to pick up changed libxen* sonames - -* Mon Dec 05 2016 Cole Robinson - 2:2.8.0-0.1-rc2 -- Rebase to qemu-2.8.0-rc2 - -* Mon Nov 28 2016 Paolo Bonzini - 2:2.7.0-10 -- Do not build aarch64 with -fPIC anymore (rhbz 1232499) - -* Tue Nov 15 2016 Nathaniel McCallum - 2:2.7.0-9 -- Clean up binfmt.d configuration files - -* Mon Nov 14 2016 Richard W.M. Jones - 2:2.7.0-8 -- Create subpackages for modularized qemu block drivers (RHBZ#1393688). -- Fix qemu-sanity-check. - -* Tue Oct 25 2016 Cole Robinson - 2:2.7.0-7 -- Fix PPC64 build with memlock file (bz #1387601) - -* Wed Oct 19 2016 Bastien Nocera - 2:2.7.0-6 -- Add "F" flag to static user emulators' binfmt, to make them - available in containers (#1384615) -- Also fixes the path of those emulators in the binfmt configurations - -* Wed Oct 19 2016 Cole Robinson - 2:2.7.0-5 -- Fix nested PPC 'Unknown MMU model' error (bz #1374749) -- Fix flickering display with boxes + wayland VM (bz #1266484) -- Add ppc64 kvm memlock file (bz #1293024) - -* Sat Oct 15 2016 Cole Robinson - 2:2.7.0-4 -- CVE-2016-7155: pvscsi: OOB read and infinite loop (bz #1373463) -- CVE-2016-7156: pvscsi: infinite loop when building SG list (bz #1373480) -- CVE-2016-7156: pvscsi: infinite loop when processing IO requests (bz - #1373480) -- CVE-2016-7170: vmware_vga: OOB stack memory access (bz #1374709) -- CVE-2016-7157: mptsas: invalid memory access (bz #1373505) -- CVE-2016-7466: usb: xhci memory leakage during device unplug (bz #1377838) -- CVE-2016-7423: scsi: mptsas: OOB access (bz #1376777) -- CVE-2016-7422: virtio: null pointer dereference (bz #1376756) -- CVE-2016-7908: net: Infinite loop in mcf_fec_do_tx (bz #1381193) -- CVE-2016-8576: usb: xHCI: infinite loop vulnerability (bz #1382322) -- CVE-2016-7995: usb: hcd-ehci: memory leak (bz #1382669) - -* Mon Oct 10 2016 Hans de Goede - 2:2.7.0-3 -- Fix interrupt endpoints not working with network/spice USB redirection - on guest with an emulated xhci controller (rhbz#1382331) - -* Tue Sep 20 2016 Michal Toman - 2:2.7.0-2 -- Fix build on MIPS - -* Thu Sep 08 2016 Cole Robinson - 2:2.7.0-1 -- Rebase to qemu 2.7.0 GA - -* Fri Aug 19 2016 Cole Robinson - 2:2.7.0-0.2.rc3 -- Rebase to qemu 2.7.0-rc3 - -* Wed Aug 03 2016 Cole Robinson - 2:2.7.0-0.1.rc2 -- Rebase to qemu 2.7.0-rc2 - -* Sat Jul 23 2016 Richard W.M. Jones - 2:2.6.0-6 -- Rebuild to attempt to fix '2:qemu-system-xtensa-2.6.0-5.fc25.x86_64 requires libxenctrl.so.4.6()(64bit)' - -* Wed Jul 13 2016 Daniel Berrange - 2:2.6.0-5 -- Introduce qemu-user-static sub-RPM - -* Wed Jun 22 2016 Cole Robinson - 2:2.6.0-4 -- CVE-2016-4002: net: buffer overflow in MIPSnet (bz #1326083) -- CVE-2016-4952 scsi: pvscsi: out-of-bounds access issue -- CVE-2016-4964: scsi: mptsas infinite loop (bz #1339157) -- CVE-2016-5106: scsi: megasas: out-of-bounds write (bz #1339581) -- CVE-2016-5105: scsi: megasas: stack information leakage (bz #1339585) -- CVE-2016-5107: scsi: megasas: out-of-bounds read (bz #1339573) -- CVE-2016-4454: display: vmsvga: out-of-bounds read (bz #1340740) -- CVE-2016-4453: display: vmsvga: infinite loop (bz #1340744) -- CVE-2016-5126: block: iscsi: buffer overflow (bz #1340925) -- CVE-2016-5238: scsi: esp: OOB write (bz #1341932) -- CVE-2016-5338: scsi: esp: OOB r/w access (bz #1343325) -- CVE-2016-5337: scsi: megasas: information leakage (bz #1343910) -- Fix crash with -nodefaults -sdl (bz #1340931) -- Add deps on edk2-ovmf and edk2-aarch64 - -* Thu May 26 2016 Cole Robinson - 2:2.6.0-3 -- CVE-2016-4020: memory leak in kvmvapic.c (bz #1326904) -- CVE-2016-4439: scsi: esb: OOB write #1 (bz #1337503) -- CVE-2016-4441: scsi: esb: OOB write #2 (bz #1337506) -- Fix regression installing windows 7 with qxl/vga (bz #1339267) -- Fix crash with aarch64 gic-version=host and accel=tcg (bz #1339977) - -* Fri May 20 2016 Cole Robinson - 2:2.6.0-2 -- Explicitly error if spice GL setup fails -- Fix monitor resizing with virgl (bz #1337564) -- Fix libvirt noise when introspecting qemu-kvm without hw virt - -* Fri May 13 2016 Cole Robinson - 2:2.6.0-1 -- Rebase to v2.6.0 GA - -* Mon May 09 2016 Cole Robinson - 2:2.6.0-0.2.rc5 -- Fix gtk UI crash when switching to monitor (bz #1333424) -- Fix sdl2 UI lockup lockup when switching to monitor -- Rebased to qemu-2.6.0-rc5 - -* Mon May 02 2016 Cole Robinson 2:2.6.0-0.2.rc4 -- Rebased to version 2.6.0-rc4 -- Fix test suite on big endian hosts (bz 1330174) - -* Mon Apr 25 2016 Cole Robinson - 2:2.6.0-0.2.rc3 -- Rebuild to pick up spice GL support - -* Mon Apr 18 2016 Cole Robinson 2:2.6.0-0.1.rc3 -- Rebased to version 2.6.0-rc3 -- Fix s390 sysctl file install (bz 1327870) -- Adjust spice gl version check to expect F24 backported version - -* Thu Apr 14 2016 Cole Robinson 2:2.6.0-0.1.rc2 -- Rebased to version 2.6.0-rc2 -- Fix GL deps (bz 1325966) -- Ship sysctl file to fix s390x kvm (bz 1290589) -- Fix FTBFS on s390 (bz 1326247) - -* Thu Apr 07 2016 Cole Robinson - 2:2.6.0-0.1.rc1 -- Rebased to version 2.6.0-rc1 - -* Thu Mar 17 2016 Cole Robinson - 2:2.5.0-11 -- CVE-2016-2857: net: out of bounds read (bz #1309564) -- CVE-2016-2392: usb: null pointer dereference (bz #1307115) - -* Thu Mar 17 2016 Cole Robinson - 2:2.5.0-10 -- CVE-2016-2538: Integer overflow in usb module (bz #1305815) -- CVE-2016-2841: ne2000: infinite loop (bz #1304047) -- CVE-2016-2857 net: out of bounds read (bz #1309564) -- CVE-2016-2392 usb: null pointer dereference (bz #1307115) -- Fix external snapshot any more after active committing (bz #1300209) - -* Wed Mar 9 2016 Peter Robinson 2:2.5.0-9 -- Rebuild for tcmalloc ifunc issues on non x86 arches (see rhbz 1312462) - -* Tue Mar 1 2016 Paolo Bonzini 2:2.5.0-8 -- Disable xfsctl, fallocate works fine in newer kernels (bz #1305512) - -* Tue Mar 1 2016 Peter Robinson 2:2.5.0-7 -- All Fedora arches have libseccomp support (ARMv7, aarch64, Power64, s390(x)) - -* Mon Feb 15 2016 Cole Robinson - 2:2.5.0-6 -- CVE-2015-8619: Fix sendkey out of bounds (bz #1292757) -- CVE-2016-1981: infinite loop in e1000 (bz #1299995) -- Fix Out-of-bounds read in usb-ehci (bz #1300234, bz #1299455) -- CVE-2016-2197: ahci: null pointer dereference (bz #1302952) -- Fix gdbstub for VSX registers for ppc64 (bz #1304377) -- Fix qemu-img vmdk images to work with VMware (bz #1299185) - -* Thu Feb 04 2016 Fedora Release Engineering - 2:2.5.0-5 -- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild - -* Wed Jan 20 2016 Cole Robinson - 2:2.5.0-4 -- CVE-2015-8567: net: vmxnet3: host memory leakage (bz #1289818) -- CVE-2016-1922: i386: avoid null pointer dereference (bz #1292766) -- CVE-2015-8613: buffer overflow in megasas_ctrl_get_info (bz #1284008) -- CVE-2015-8701: Buffer overflow in tx_consume in rocker.c (bz #1293720) -- CVE-2015-8743: ne2000: OOB memory access in ioport r/w functions (bz - #1294787) -- CVE-2016-1568: Use-after-free vulnerability in ahci (bz #1297023) -- Fix modules.d/kvm.conf example syntax (bz #1298823) - -* Sat Jan 09 2016 Cole Robinson - 2:2.5.0-3 -- Fix virtio 9p thread pool usage -- CVE-2015-8558: DoS by infinite loop in ehci_advance_state (bz #1291309) -- Re-add dist tag - -* Thu Jan 7 2016 Paolo Bonzini - 2:2.5.0-2 -- add /etc/modprobe.d/kvm.conf -- add 0001-virtio-9p-use-accessor-to-get-thread-pool.patch - -* Wed Dec 23 2015 Cole Robinson 2:2.5.0-1 -- Rebased to version 2.5.0 - -* Tue Dec 08 2015 Cole Robinson 2:2.5.0-0.1.rc3 -- Rebased to version 2.5.0-rc3 - -* Mon Nov 30 2015 Cole Robinson 2:2.5.0-0.1.rc2 -- Rebased to version 2.5.0-rc2 - -* Fri Nov 20 2015 Cole Robinson 2:2.5.0-0.1.rc1 -- Rebased to version 2.5.0-rc1 - -* Wed Nov 04 2015 Cole Robinson - 2:2.4.1-1 -- Rebased to version 2.4.1 - -* Sun Oct 11 2015 Cole Robinson - 2:2.4.0.1-2 -- Rebuild for xen 4.6 - -* Thu Oct 08 2015 Cole Robinson - 2:2.4.0.1-1 -- Rebased to version 2.4.0.1 -- CVE-2015-7295: virtio-net possible remote DoS (bz #1264393) -- drive-mirror: Fix coroutine reentrance (bz #1266936) - -* Mon Sep 21 2015 Cole Robinson - 2:2.4.0-4 -- CVE-2015-6815: net: e1000: infinite loop issue (bz #1260225) -- CVE-2015-6855: ide: divide by zero issue (bz #1261793) -- CVE-2015-5278: Infinite loop in ne2000_receive() (bz #1263284) -- CVE-2015-5279: Heap overflow vulnerability in ne2000_receive() (bz #1263287) - -* Sun Sep 20 2015 Richard W.M. Jones - 2:2.4.0-3 -- Fix emulation of various instructions, required by libm in F22 ppc64 guests. - -* Mon Aug 31 2015 Cole Robinson - 2:2.4.0-2 -- CVE-2015-5255: heap memory corruption in vnc_refresh_server_surface (bz - #1255899) - -* Tue Aug 11 2015 Cole Robinson - 2:2.4.0-1 -- Rebased to version 2.4.0 -- Support for virtio-gpu, 2D only -- Support for virtio-based keyboard/mouse/tablet emulation -- x86 support for memory hot-unplug -- ACPI v5.1 table support for 'virt' board - -* Sun Aug 09 2015 Cole Robinson - 2:2.4.0-0.2.rc4 -- CVE-2015-3209: pcnet: multi-tmd buffer overflow in the tx path (bz #1230536) -- CVE-2015-3214: i8254: out-of-bounds memory access (bz #1243728) -- CVE-2015-5158: scsi stack buffer overflow (bz #1246025) -- CVE-2015-5154: ide: atapi: heap overflow during I/O buffer memory access (bz - #1247141) -- CVE-2015-5165: rtl8139 uninitialized heap memory information leakage to - guest (bz #1249755) -- CVE-2015-5166: BlockBackend object use after free issue (bz #1249758) -- CVE-2015-5745: buffer overflow in virtio-serial (bz #1251160) - -* Tue Jul 14 2015 Cole Robinson 2:2.4.0-0.1-rc0 -- Rebased to version 2.4.0-rc0 - -* Fri Jul 3 2015 Richard W.M. Jones - 2:2.3.0-15 -- Bump and rebuild. - -* Fri Jul 3 2015 Daniel P. Berrange - 2:2.3.0-14 -- Use explicit --(enable,disable)-spice args (rhbz #1239102) - -* Thu Jul 2 2015 Peter Robinson 2:2.3.0-13 -- Build aarch64 with -fPIC (rhbz 1232499) - -* Wed Jul 01 2015 Nick Clifton - 2:2.3.0-12 -- Disable stack protection for AArch64. F23's GCC thinks that it is available but F23's glibc does not support it. - -* Fri Jun 26 2015 Paolo Bonzini - 2:2.3.0-10 -- Rebuild for libiscsi soname bump - -* Fri Jun 19 2015 Paolo Bonzini - 2:2.3.0-10 -- Re-enable tcmalloc on arm - -* Thu Jun 18 2015 Fedora Release Engineering - 2:2.3.0-9 -- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild - -* Wed Jun 10 2015 Dan Horák - 2:2.3.0-8 -- gperftools not available on s390(x) - -* Fri Jun 05 2015 Cole Robinson - 2:2.3.0-7 -- CVE-2015-4037: insecure temporary file use in /net/slirp.c (bz #1222894) - -* Mon Jun 1 2015 Daniel P. Berrange - 2:2.3.0-6 -- Disable tcmalloc on arm since it currently hangs (rhbz #1226806) -- Re-enable tests on arm - -* Wed May 13 2015 Cole Robinson - 2:2.3.0-5 -- Backport upstream 2.4 patch to link with tcmalloc, enable it -- CVE-2015-3456: (VENOM) fdc: out-of-bounds fifo buffer memory access (bz - #1221152) - -* Sun May 10 2015 Paolo Bonzini 2:2.3.0-4 -- Backport upstream 2.4 patch to link with tcmalloc, enable it -- Add -p1 to autopatch - -* Wed May 06 2015 Cole Robinson 2:2.3.0-3 -- Fix ksm.service (bz 1218814) - -* Tue May 5 2015 Dan Horák - 2:2.3.0-2 -- Require libseccomp only when built with it - -* Tue Mar 24 2015 Cole Robinson - 2:2.3.0-1 -- Rebased to version 2.3.0 GA -- Another attempt at fixing default /dev/kvm permissions (bz 950436) - -* Tue Mar 24 2015 Cole Robinson - 2:2.3.0-0.5.rc3 -- Drop unneeded kvm.modules -- Fix s390/ppc64 FTBFS (bz 1212328) - -* Tue Mar 24 2015 Cole Robinson - 2:2.3.0-0.4.rc3 -- Rebased to version 2.3.0-rc3 - -* Tue Mar 24 2015 Cole Robinson - 2:2.3.0-0.3.rc2 -- Rebased to version 2.3.0-rc2 -- Don't install ksm services as executable (bz #1192720) -- Skip hanging tests on s390 (bz #1206057) -- CVE-2015-1779 vnc: insufficient resource limiting in VNC websockets decoder - (bz #1205051, bz #1199572) - -* Tue Mar 24 2015 Cole Robinson - 2:2.3.0-0.2.rc1 -- Rebased to version 2.3.0-rc1 - -* Sun Mar 22 2015 Cole Robinson - 2:2.3.0-0.1.rc0 -- Rebased to version 2.3.0-rc0 - -* Tue Feb 17 2015 Richard W.M. Jones - 2:2.2.0-7 -- Add -fPIC flag to build to avoid - 'relocation R_X86_64_PC32 against undefined symbol' errors. -- Add a hopefully temporary hack so that -fPIC is used to build - NSS files in libcacard. - -* Wed Feb 4 2015 Richard W.M. Jones - 2:2.2.0-5 -- Add UEFI support for aarch64. - -* Tue Feb 3 2015 Daniel P. Berrange - 2:2.2.0-4 -- Re-enable SPICE after previous build fixes circular dep - -* Tue Feb 3 2015 Daniel P. Berrange - 2:2.2.0-3 -- Rebuild for changed xen soname -- Temporarily disable SPICE to break circular build-dep on libcacard -- Stop libcacard linking against the entire world - -* Wed Jan 28 2015 Daniel P. Berrange - 2:2.2.0-2 -- Pass package information to configure