From 605027b02ec0651889e07ee5d6f8d75ce60f2f6a Mon Sep 17 00:00:00 2001
From: CentOS Sources <bugs@centos.org>
Date: Tue, 27 Oct 2015 08:25:57 +0000
Subject: [PATCH] import qemu-kvm-1.5.3-86.el7_1.8

---
 SPECS/qemu-kvm.spec |   22 +++++++++++++++++++++-
 1 files changed, 21 insertions(+), 1 deletions(-)

diff --git a/SPECS/qemu-kvm.spec b/SPECS/qemu-kvm.spec
index 86f4a7a..0820ccb 100644
--- a/SPECS/qemu-kvm.spec
+++ b/SPECS/qemu-kvm.spec
@@ -72,7 +72,7 @@
 Summary: QEMU is a FAST! processor emulator
 Name: %{pkgname}%{?pkgsuffix}
 Version: 1.5.3
-Release: 86%{?dist}.6
+Release: 86%{?dist}.8
 # Epoch because we pushed a qemu-1.0 package. AIUI this can't ever be dropped
 Epoch: 10
 License: GPLv2+ and LGPLv2+ and BSD
@@ -2859,6 +2859,12 @@
 Patch1404: kvm-rtl8139-skip-offload-on-short-TCP-header-CVE-2015-51.patch
 # For bz#1248764 - CVE-2015-5165 qemu-kvm: Qemu: rtl8139 uninitialized heap memory information leakage to guest [rhel-7.1.z]
 Patch1405: kvm-rtl8139-check-TCP-Data-Offset-field-CVE-2015-5165.patch
+# For bz#1205050 - CVE-2015-1779 qemu-kvm: qemu: vnc: insufficient resource limiting in VNC websockets decoder [rhel-7.1.z]
+Patch1406: kvm-CVE-2015-1779-incrementally-decode-websocket-frames.patch
+# For bz#1205050 - CVE-2015-1779 qemu-kvm: qemu: vnc: insufficient resource limiting in VNC websockets decoder [rhel-7.1.z]
+Patch1407: kvm-CVE-2015-1779-limit-size-of-HTTP-headers-from-websoc.patch
+# For bz#1273098 - qemu-kvm build failure race condition in tests/ide-test
+Patch1408: kvm-qtest-ide-test-disable-flush-test.patch
 
 
 BuildRequires: zlib-devel
@@ -4472,6 +4478,9 @@
 %patch1403 -p1
 %patch1404 -p1
 %patch1405 -p1
+%patch1406 -p1
+%patch1407 -p1
+%patch1408 -p1
 
 %build
 buildarch="%{kvm_target}-softmmu"
@@ -4916,6 +4925,17 @@
 %{_libdir}/pkgconfig/libcacard.pc
 
 %changelog
+* Mon Oct 19 2015 Jeff E. Nelson <jen@redhat.com> - 1.5.3-86.el7_1.8
+- kvm-qtest-ide-test-disable-flush-test.patch [bz#1273098]
+- Resolves: bz#1273098
+  (qemu-kvm build failure race condition in tests/ide-test)
+
+* Fri Oct 09 2015 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-86.el7_1.7
+- kvm-CVE-2015-1779-incrementally-decode-websocket-frames.patch [bz#1205050]
+- kvm-CVE-2015-1779-limit-size-of-HTTP-headers-from-websoc.patch [bz#1205050]
+- Resolves: bz#1205050
+  (CVE-2015-1779 qemu-kvm: qemu: vnc: insufficient resource limiting in VNC websockets decoder [rhel-7.1.z])
+
 * Thu Aug 06 2015 Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-86.el7_1.6
 - kvm-rtl8139-avoid-nested-ifs-in-IP-header-parsing-CVE-20.patch [bz#1248764]
 - kvm-rtl8139-drop-tautologous-if-ip-.-statement-CVE-2015-.patch [bz#1248764]

--
Gitblit v1.8.0