[Pkg-xen-devel] Xen package security updates for jessie 4.4, XSA-213, XSA-214
Moritz Mühlenhoff
jmm at inutil.org
Tue May 9 20:45:52 UTC 2017
On Fri, May 05, 2017 at 04:33:03PM +0100, Ian Jackson wrote:
> (switching to my personal account since Citrix and security at d.o
> spamfilters are fighting.)
>
> Ian Jackson writes ("Re: Xen package security updates for jessie 4.4, XSA-213, XSA-214"):
> > Moritz Muehlenhoff writes ("Re: Xen package security updates for jessie 4.4, XSA-213, XSA-214"):
> > > Let's also include fixes for https://xenbits.xen.org/xsa/advisory-212.html
> > > and https://xenbits.xen.org/xsa/advisory-200.html, for these even official
> > > 4.4 backports are available.
> >
> > OK.
>
> I also managed to fix XSA-202 and XSA-204.
>
> > This is true of all the patches. The diff was a git diff of a
> > dgit-compatible tree (ie, a patches-applied tree). I can give you a
> > diff without the upstream changes if you want.
>
> Here's the revised diff. This is of the prerelease package (with
> prerelease version number) I actually built and tested. I will fix up
> the version number before pushing.
Axel Beckert and Gabriel Filion ran additional tests on the update,
which were successful as well. I'll release the update now.
Thanks,
Moritz
More information about the Pkg-xen-devel
mailing list