------------------------------------------------------------------- Thu Jan 31 22:10:10 UTC 2019 - Bruce Rogers - Address various security/stability issues * Fix OOB access in slirp (CVE-2019-6778 bsc#1123156) 1489-slirp-check-data-length-while-emula.patch * Fix DoS in virtfs (CVE-2018-19489 bsc#1117275) 1490-9p-fix-QEMU-crash-when-renaming-fil.patch * Fix OOB issue (use-after-free) if virtfs interface is deliberately abused (CVE-2018-19364 bsc#1116717) 1491-9p-write-lock-path-in-v9fs_co_open2.patch 1492-9p-take-write-lock-on-fid-path-upda.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Fri Jan 25 05:36:02 UTC 2019 - lma@suse.com * Fix LAPIC TSC deadline timer save/restore (bsc#1109544) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1488-kvm-i386-fix-LAPIC-TSC-deadline-tim.patch ------------------------------------------------------------------- Mon Nov 5 21:16:31 UTC 2018 - Bruce Rogers - Address the following security vulnerability: * Avoid OOB access in restoring lsi53c895a emulated SCSI controller state (CVE-2018-18849 bsc#1114422) 1487-lsi53c895a-check-message-length-val.patch - Tweak spec file url's to match today's reality - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Thu Nov 1 19:03:00 UTC 2018 - Larry Dewey * Pulling upstream security fixes to mitigate potential memory corruption problem to the chardev infrastructure (CVE-2018-18438 bsc#1112185) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1486-chardev-Converting-public-IO-impls-.patch ------------------------------------------------------------------- Mon Oct 29 19:35:35 UTC 2018 - Larry Dewey * Pulling upstream security fixes for NE2000, RTL8139, pcnet, and packet size changes (CVE-2018-10839 CVE-2018-17958 CVE-2018-17962 CVE-2018-17963 bsc#1110910 bsc#1111006 bsc#1111010 bsc#1111013) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1482-ne2000-fix-possible-out-of-bound-ac.patch 1483-rtl8139-fix-possible-out-of-bound-a.patch 1484-pcnet-fix-possible-buffer-overflow.patch 1485-net-ignore-packet-size-greater-than.patch ------------------------------------------------------------------- Wed Oct 24 15:08:33 UTC 2018 - Larry Dewey * Added seccomp_start() calls before the start of each thread to guarantee seccomp is enabled when sandboxing is specified via configuration file or via the command line. (CVE-2018-15746 bsc#1106222) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1481-seccomp-secure-all-threads-with-sec.patch ------------------------------------------------------------------- Wed Aug 8 18:43:52 UTC 2018 - brogers@suse.com - Update to upstream Spectre v4 vulnerability mitigation support, which includes exchanging our early patch with the upstream version (basically the same) and adding AMD related support. (CVE-2018-3639 bsc#1092885) * Patches renamed: 1476-i386-Add-bit-2-of-SPEC_CTRL-MSR-sup.patch -> 1476-i386-define-the-ssbd-CPUID-feature-.patch * Patches added: 1479-i386-Define-the-Virt-SSBD-MSR-and-h.patch 1480-i386-define-the-AMD-virt-ssbd-CPUID.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Jul 31 08:08:21 UTC 2018 - fli@suse.com - Fix integer overflow while allocating a large memory chunk in qemu-ga: qmp_guest_file_read (CVE-2018-12617 bsc#1098735) 1478-qga-check-bytes-count-read-by-guest.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Fri Jun 22 09:43:51 UTC 2018 - fli@suse.com - Fix heap buffer overflow while reassembling fragmented datagrams in Slirp networking (CVE-2018-11806 bsc#1096223) 1477-slirp-correct-size-computation-whil.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Thu Jun 7 14:57:31 UTC 2018 - brogers@suse.com - Tweak patch file generation to be more git version agnostic. ------------------------------------------------------------------- Mon May 14 21:36:43 UTC 2018 - brogers@suse.com - Spectre v4 vulnerability mitigation support for KVM guests. High level description of vulnerability: Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. This patch permits the new x86 cpu feature flag named "ssbd" to be presented to the guest, given that the host has this feature, and KVM exposes it to the guest as well. As this change also relies on the same MSR infrastructure used for the "spec-ctrl" feature now is a good time to remove the temporary patch used to help ensure a smooth transition to spec-ctrl support regardless of KVM support. For this feature to be enabled, via adding it to the qemu commandline (eg: -cpu ,+spec-ctrl,+ssbd), so the guest OS can take advantage of the feature, spec-ctrl and ssbd support is also required in the host. (CVE-2018-3639 bsc#1092885) * Patches dropped: 1476-i386-Compensate-for-KVM-SPEC_CTRL-f.patch * Patches added: 1476-i386-Add-bit-2-of-SPEC_CTRL-MSR-sup.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Mon Mar 12 16:29:44 UTC 2018 - brogers@suse.com - This update has the next round of Spectre v2 related patches, which now integrates with corresponding changes in libvirt. A January 2018 release of qemu initially addressed the Spectre v2 vulnerability for KVM guests by exposing the spec-ctrl feature for all x86 vcpu types, which was the quick and dirty approach, but not the proper solution. We remove that initial patch and now rely on patches from upstream. This update defines spec_ctrl and ibpb cpu feature flags as well as new cpu models which are clones of existing models with either -IBRS or -IBPB added to the end of the model name. These new vcpu models explicitly include the new feature(s), whereas the feature flags can be added to the cpu parameter as with other features. In short, for continued Spectre v2 protection, ensure that either the appropriate cpu feature flag is added to the QEMU command-line, or one of the new cpu models is used. Although migration from older versions is supported, the new cpu features won't be properly exposed to the guest until it is restarted with the cpu features explicitly added. A reboot is insufficient. - A warning patch is added which attempts to detect a migration from a qemu version which had the quick and dirty fix (it only detects certain cases, but hopefully is helpful.) For additional information on Spectre v2 as it relates to QEMU, see: https://www.qemu.org/2018/02/14/qemu-2-11-1-and-spectre-update/ (CVE-2017-5715 bsc#1068032) - A patch is added to continue to detect Spectre v2 mitigation features (as shown by cpuid), and if found provide that feature to guests, even if running on older KVM (kernel) versions which do not yet expose that feature to QEMU. (bsc#1082276) These two patches will be removed when we can reasonably assume everyone is running with the appropriate updates. * Patches dropped: 1467-i386-kvm-MSR_IA32_SPEC_CTRL-and-MSR.patch * Patches added: 1467-i386-Add-support-for-SPEC_CTRL-MSR.patch 1470-x86-cpu-increase-model_id-array-siz.patch 1471-x86-add-infrastructure-for-7_0_EDX-.patch 1472-i386-Add-spec-ctrl-CPUID-bit.patch 1473-i386-Add-FEAT_8000_0008_EBX-CPUID-f.patch 1474-i386-Add-new-IBRS-versions-of-Intel.patch 1475-migration-warn-about-inconsistent-s.patch 1476-i386-Compensate-for-KVM-SPEC_CTRL-f.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Thu Mar 8 20:40:19 UTC 2018 - lyan@suse.com - Security fixes for the following CVE issues: (bsc#1076114 CVE-2018-5683) 1468-vga-check-the-validation-of-memory-.patch (bsc#1083291 CVE-2018-7550) 1469-multiboot-check-mh_load_end_addr-ad.patch - This patch is already included, add here for CVE track (bsc#1076179 CVE-2017-18030) 1275-cirrus-handle-negative-pitch-in-cir.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Fri Mar 2 21:05:05 UTC 2018 - brogers@suse.com - Toolchain changes have cause the built size of pxe-virtio.rom to exceed 64K. Tweak rarely used strings in code to reduce size of the binary so it fits again. ipxe-make-pxe-virtio-rom-fit.patch ------------------------------------------------------------------- Wed Feb 28 17:26:19 UTC 2018 - brogers@suse.com - Eliminate bogus use of CPUID_7_0_EDX_PRED_CMD which we've carried since the initial Spectre v2 patch was added. EDX bit 27 of CPUID Leaf 07H, Sub-leaf 0 provides status on STIBP, and not the PRED_CMD MSR. Exposing the STIBP CPUID feature bit to the guest is wrong in general, since the VM doesn't directly control the scheduling of physical hyperthreads. This is left strictly to the L0 hypervisor. ------------------------------------------------------------------- Wed Dec 20 18:23:45 UTC 2017 - brogers@suse.com - Pass through to guest info related to x86 security vulnerability (CVE-2017-5715 bsc#1068032) 1467-i386-kvm-MSR_IA32_SPEC_CTRL-and-MSR.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Oct 24 22:15:56 UTC 2017 - brogers@suse.com - Address security/stability issue * Fix OOB issues in vnc infrastructure (CVE-2017-2633 bsc#1026612) 1448-console-fix-displaychangelisteners-.patch 1449-console-kill-DisplayState-opaque.patch 1450-sdl-drop-dead-code.patch 1451-console-rework-DisplaySurface-handl.patch 1452-console-rework-DisplaySurface-handl.patch 1453-console-add-surface_-getters.patch 1454-vnc-stop-using-DisplayState.patch 1455-sdl-stop-using-DisplayState.patch 1456-cocoa-stop-using-DisplayState.patch 1457-console-zap-displaystate-from-dcl-c.patch 1458-ui-vnc-introduce-VNC_DIRTY_PIXELS_P.patch 1459-ui-vnc-derive-cmp_bytes-from-VNC_DI.patch 1460-ui-vnc-optimize-dirty-bitmap-tracki.patch 1461-ui-vnc-optimize-setting-in-vnc_dpy_.patch 1462-ui-vnc-disable-adaptive-update-calc.patch 1463-ui-vnc-fix-vmware-VGA-incompatiblit.patch 1464-ui-vnc-fix-potential-memory-corrupt.patch 1465-vnc-fix-memory-corruption-CVE-2015-.patch 1466-vnc-fix-overflow-in-vnc_update_stat.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Thu Oct 19 21:25:50 UTC 2017 - brogers@suse.com - Address security/stability issue * Fix OOB access in cirrus vga device emulation (CVE-2017-15289 bsc#1063122) 1446-cirrus-fix-oob-access-in-mode4and5-.patch * Fix information leak in 9pfs interface (CVE-2017-15038 bsc#1062069) 1447-9pfs-use-g_malloc0-to-allocate-spac.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Oct 17 14:56:45 UTC 2017 - fli@suse.com - Address various security issues fix * Fix OOB access while loading kernel via multiboot image (CVE-2017-14167 bsc#1057585) 1442-multiboot-validate-multiboot-header.patch * Fix OOB access parsing dhcp slirp options (CVE-2017-11434 bsc#1049381) 1443-slirp-check-len-against-dhcp-option.patch * Fix OOB access during DMA operation (CVE-2017-11334 bsc#1048902) 1444-exec-use-qemu_ram_ptr_length-to-acc.patch * Fix OOB read access during vga display update (CVE-2017-13672 bsc#1056334) 1445-vga-stop-passing-pointers-to-vga_dr.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Thu Sep 21 16:30:56 UTC 2017 - brogers@suse.com - Address various security/stability issues * Fix potential DOS in usb xhci emulation (CVE-2017-5973 bsc#1025109) 1422-xhci-apply-limits-to-loops.patch * Fix DOS in USB OHCI emulation (CVE-2017-6505 bsc#1028184) 1423-usb-ohci-limit-the-number-of-link-e.patch * Fix OOB access in cirrus vga emulation (CVE-2016-9603 bsc#1028656) 1424-cirrus-vnc-zap-bitblit-support-from.patch * Fix privilege escalation in TCG mode of QEMU (bsc#1030624) 1425-tcg-i386-Check-the-size-of-instruct.patch * Fix OOB access in cirrus vga emulation (CVE-2017-7718 bsc#1034908) 1426-fix-cirrus_vga-fix-OOB-read-case-qe.patch * Fix OOB access in cirrus vga emulation (CVE-2017-7980 bsc#1035406) 1427-cirrus-stop-passing-around-dst-poin.patch 1428-cirrus-stop-passing-around-src-poin.patch 1429-cirrus-fix-off-by-one-in-cirrus_bit.patch * Fix DOS in USB XHCI emulation (CVE-2017-9375 bsc#1042800) 1430-xhci-guard-xhci_kick_epctx-against-.patch * Fix DOS in AHCI emulation (CVE-2017-9373 bsc#1042801) 1431-ide-core-add-cleanup-function.patch 1432-ide-ahci-call-cleanup-function-in-a.patch * Fix DOS in USB OHCI emulation (CVE-2017-9330 bsc#1042159) 1433-usb-ohci-fix-error-return-code-in-s.patch * Fix DOS potential in vnc interface (CVE-2017-8309 bsc#1037242) 1434-audio-release-capture-buffers.patch * Fix potential privilege escalation in virtfs (CVE-2017-7493 bsc#1039495) 1435-9pfs-local-forbid-client-access-to-.patch * Fix potential privilege escalation in virtfs (CVE-2016-9602 bsc#1020427) 1436-9pfs-local-fix-unlink-of-alien-file.patch * Fix DOS in serial 16550A UART emulation (CVE-2017-5579 bsc#1021741) 1437-serial-fix-memory-leak-in-serial-ex.patch * Fix DOS in megasas device emulation (CVE-2017-9503 bsc#1043296) 1438-megasas-do-not-read-DCMD-opcode-mor.patch 1439-megasas-always-store-SCSIRequest-in.patch * Fix DOS vulnerability in qemu-nbd (bsc#1046636 CVE-2017-10664) 1440-qemu-nbd-Ignore-SIGPIPE.patch * Fix DOS from stack overflow in debug messages of usb redirection support (bsc#1047674 CVE-2017-10806) 1441-usb-redir-fix-stack-overflow-in-usb.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Aug 8 13:01:15 UTC 2017 - brogers@suse.com - Fix virsh dump output to be readable by crash (bsc#1049785) 1418-dump-clamp-guest-provided-mapping-l.patch 1419-dump-introduce-GuestPhysBlockList.patch 1420-dump-populate-guest_phys_blocks.patch 1421-dump-rebase-from-host-private-RAMBl.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Wed Jul 5 08:29:58 UTC 2017 - lma@suse.com * Fix 12 tempest tests fail (bsc#1038396) 1411-cpu-Turn-cpu_paging_enabled-into-a-.patch 1412-memory_mapping-Move-MemoryMappingLi.patch 1413-cpu-Turn-cpu_get_memory_mapping-int.patch 1414-cpu-Replace-cpu_single_env-with-CPU.patch 1415-virtio-add-subsections-to-the-migra.patch 1416-cpu-introduce-CPUClass-virtio_is_bi.patch 1417-Adjust-some-code-for-fixing-bsc-103.patch ------------------------------------------------------------------- Wed Jun 21 12:01:15 UTC 2017 - brogers@suse.com - Add --no-renames to the git format-patch command in the git workflow script for better patch compatibility - In order to facilitate a major backport, a number of patches were reordered according to their upstream order. * Patches renamed: 1258-9pfs-handle-walk-of-.-in-the-root-d.patch -> 1353-9pfs-handle-walk-of-.-in-the-root-d.patch 1259-vnc-sanitize-bits_per_pixel-from-th.patch -> 1258-vnc-sanitize-bits_per_pixel-from-th.patch 1260-hw-net-Fix-a-heap-overflow-in-xlnx..patch -> 1259-hw-net-Fix-a-heap-overflow-in-xlnx..patch 1261-vmsvga-more-cursor-checks.patch -> 1260-vmsvga-more-cursor-checks.patch 1262-vmsvga-correct-bitmap-and-pixmap-si.patch -> 1261-vmsvga-correct-bitmap-and-pixmap-si.patch 1263-net-mcf-limit-buffer-descriptor-cou.patch -> 1262-net-mcf-limit-buffer-descriptor-cou.patch 1264-xhci-limit-the-number-of-link-trbs-.patch -> 1263-xhci-limit-the-number-of-link-trbs-.patch 1265-9pfs-allocate-space-for-guest-origi.patch -> 1356-9pfs-allocate-space-for-guest-origi.patch 1266-9pfs-fix-memory-leak-in-v9fs_link.patch -> 1363-9pfs-fix-memory-leak-in-v9fs_link.patch 1267-9pfs-fix-potential-host-memory-leak.patch -> 1357-9pfs-fix-potential-host-memory-leak.patch 1268-9pfs-fix-information-leak-in-xattr-.patch -> 1361-9pfs-fix-information-leak-in-xattr-.patch 1269-9pfs-fix-memory-leak-in-v9fs_xattrc.patch -> 1362-9pfs-fix-memory-leak-in-v9fs_xattrc.patch 1270-9pfs-fix-memory-leak-in-v9fs_write.patch -> 1364-9pfs-fix-memory-leak-in-v9fs_write.patch 1271-char-serial-check-divider-value-aga.patch -> 1264-char-serial-check-divider-value-aga.patch 1272-net-pcnet-check-rx-tx-descriptor-ri.patch -> 1265-net-pcnet-check-rx-tx-descriptor-ri.patch 1273-net-eepro100-fix-memory-leak-in-dev.patch -> 1266-net-eepro100-fix-memory-leak-in-dev.patch 1274-net-rtl8139-limit-processing-of-rin.patch -> 1267-net-rtl8139-limit-processing-of-rin.patch 1275-audio-intel-hda-check-stream-entry-.patch -> 1268-audio-intel-hda-check-stream-entry-.patch 1276-9pfs-fix-integer-overflow-issue-in-.patch -> 1365-9pfs-fix-integer-overflow-issue-in-.patch 1277-dma-rc4030-limit-interval-timer-rel.patch -> 1269-dma-rc4030-limit-interval-timer-rel.patch 1278-net-mcf-check-receive-buffer-size-r.patch -> 1270-net-mcf-check-receive-buffer-size-r.patch 1279-usb-ehci-fix-memory-leak-in-ehci_in.patch -> 1271-usb-ehci-fix-memory-leak-in-ehci_in.patch 1280-usbredir-free-vm_change_state_handl.patch -> 1272-usbredir-free-vm_change_state_handl.patch 1281-display-cirrus-check-vga-bits-per-p.patch -> 1273-display-cirrus-check-vga-bits-per-p.patch 1282-display-cirrus-ignore-source-pitch-.patch -> 1274-display-cirrus-ignore-source-pitch-.patch 1283-virtio-cache-used_idx-in-a-VirtQueu.patch -> 1348-virtio-cache-used_idx-in-a-VirtQueu.patch 1284-virtio-recalculate-vq-inuse-after-m.patch -> 1350-virtio-recalculate-vq-inuse-after-m.patch 1285-virtio-decrement-vq-inuse-in-virtqu.patch -> 1351-virtio-decrement-vq-inuse-in-virtqu.patch 1286-virtio-zero-vq-inuse-in-virtio_rese.patch -> 1352-virtio-zero-vq-inuse-in-virtio_rese.patch 1287-virtio-fix-vq-inuse-recalc-after-mi.patch -> 1370-virtio-fix-vq-inuse-recalc-after-mi.patch 1288-cirrus-handle-negative-pitch-in-cir.patch -> 1275-cirrus-handle-negative-pitch-in-cir.patch 1289-cirrus-fix-blit-address-mask-handli.patch -> 1276-cirrus-fix-blit-address-mask-handli.patch 1290-cirrus_vga-fix-off-by-one-in-blit_r.patch -> 1277-cirrus_vga-fix-off-by-one-in-blit_r.patch 1291-cirrus-fix-oob-access-issue-CVE-201.patch -> 1278-cirrus-fix-oob-access-issue-CVE-201.patch 1292-cirrus-fix-patterncopy-checks.patch -> 1279-cirrus-fix-patterncopy-checks.patch 1293-cirrus-add-blit_is_unsafe-call-to-c.patch -> 1280-cirrus-add-blit_is_unsafe-call-to-c.patch 1294-usb-ccid-check-ccid-apdu-length.patch -> 1281-usb-ccid-check-ccid-apdu-length.patch 1295-watchdog-6300esb-add-exit-function.patch -> 1282-watchdog-6300esb-add-exit-function.patch 1296-megasas-fix-guest-triggered-memory-.patch -> 1283-megasas-fix-guest-triggered-memory-.patch 1297-scsi-disk-fix-bug-in-scsi_block_new.patch -> 1284-scsi-disk-fix-bug-in-scsi_block_new.patch 1298-scsi-make-default-command-timeout-u.patch -> 1285-scsi-make-default-command-timeout-u.patch - Address various security/stability issues * Fix potential privilege escalation in virtfs (CVE-2016-9602 bsc#1020427) 1286-virtio-9p-use-CONFIG_VIRTFS-not-CON.patch 1287-virtio-9p-remove-PCI-dependencies-f.patch 1288-hw-include-hw-header-files-with-ful.patch 1289-main-loop-add-qemu_get_aio_context.patch 1290-virtio-make-virtio-device-s-structu.patch 1291-virtio-x-bus-fix-allow_hotplug-asse.patch 1292-virtio-pci-fix-hot-unplug.patch 1293-hw-move-headers-to-include.patch 1294-virtio-9p-Fix-virtio-9p-no-longer-b.patch 1295-virtio-9p-add-the-virtio-9p-device.patch 1296-virtio-9p-pci-switch-to-the-new-API.patch 1297-virtio-9p-cleanup-init-function.patch 1298-virtio-9p-cleanup-QOM-casts.patch 1299-virtio-drop-unused-function-prototy.patch 1300-virtio-add-virtio_device_set_child_.patch 1301-hw-9pfs-Fix-memory-leak-in-error-pa.patch 1302-virtio-9p-device-Avoid-freeing-unin.patch * Fix inadequate previous virtio ring fix (bsc#1038396) 1303-virtio-virtqueue_get_avail_bytes-fi.patch * Fix potential privilege escalation in virtfs (CVE-2016-9602 bsc#1020427) 1304-virtio-bus-cleanup-plug-unplug-inte.patch 1305-virtio-9p-QOM-realize-preparations.patch 1306-virtio-Start-converting-VirtioDevic.patch 1307-virtio-9p-Convert-to-QOM-realize.patch 1308-virtio-Complete-converting-VirtioDe.patch 1309-virtio-Convert-exit-to-unrealize.patch 1310-error-Add-error_abort.patch * Fix inadequate previous virtio ring fix (bsc#1038396) 1311-exec-introduce-target_words_bigendi.patch 1312-virtio-add-endian-ambivalent-suppor.patch 1313-virtio-memory-accessors-for-endian-.patch 1314-virtio-allow-byte-swapping-for-vrin.patch * Fix potential privilege escalation in virtfs (CVE-2016-9602 bsc#1020427) 1315-qom-add-object_property_add_alias.patch 1316-qdev-add-qdev_alias_all_properties.patch 1317-virtio-9p-use-aliases-instead-of-du.patch 1318-include-import-virtio-headers-from-.patch * Fix inadequate previous virtio ring fix (bsc#1038396) 1319-virtio-use-standard-virtio_ring.h.patch * Fix potential privilege escalation in virtfs (CVE-2016-9602 bsc#1020427) 1320-virtio-use-standard-headers.patch 1321-virtio-9p-use-standard-headers.patch 1322-virtio-9p-device-move-qdev-properti.patch 1323-coroutine-move-into-libqemuutil.a-l.patch 1324-virtio-9p-device-add-minimal-unreal.patch 1325-9pfs-rename-virtio-9p-handle.c-to-9.patch 1326-9pfs-rename-virtio-9p-local.c-to-9p.patch 1327-9pfs-rename-virtio-9p-posix-acl.c-t.patch 1328-9pfs-rename-virtio-9p-proxy.-c-h-to.patch 1329-9pfs-rename-virtio-9p-xattr-user-.-.patch 1330-9pfs-merge-hw-virtio-virtio-9p.h-in.patch 1331-9pfs-remove-dead-code.patch 1332-fsdev-break-out-9p-marshal.-c-h-fro.patch 1333-fsdev-rename-virtio-9p-marshal.-c-h.patch 1334-9pfs-PDU-processing-functions-don-t.patch 1335-9pfs-PDU-processing-functions-shoul.patch 1336-9pfs-make-pdu_-un-marshal-proper-fu.patch 1337-9pfs-factor-out-virtio_pdu_-un-mars.patch 1338-9pfs-factor-out-pdu_push_and_notify.patch 1339-9pfs-break-out-virtio_init_iov_from.patch 1340-9pfs-break-out-9p.h-from-virtio-9p..patch 1341-9pfs-factor-out-virtio_9p_push_and_.patch 1342-9pfs-export-pdu_-submit-alloc-free.patch 1343-9pfs-move-handle_9p_output-and-make.patch 1344-9pfs-rename-virtio_9p_set_fd_limit-.patch 1345-9pfs-rename-virtio-9p.c-to-9p.c.patch 1346-9pfs-factor-out-v9fs_device_-un-rea.patch 1347-9pfs-introduce-V9fsVirtioState.patch 1349-9p-introduce-the-V9fsDir-type.patch * Fix potential privilege escalation in virtfs (CVE-2017-7471 bsc#1034866) 1354-9pfs-introduce-v9fs_path_sprintf-he.patch * Fix potential privilege escalation in virtfs (CVE-2016-9602 bsc#1020427) 1355-9pfs-fix-potential-segfault-during-.patch 1358-9pfs-drop-useless-check-in-pdu_free.patch 1359-9pfs-only-free-completed-request-if.patch 1360-virtio-9p-add-reset-handler.patch 1366-9pfs-drop-excessive-error-message-f.patch 1367-9pfs-add-cleanup-operation-in-FileO.patch 1368-9pfs-move-pdus-to-V9fsState.patch 1369-9pfs-fix-crash-when-fsdev-is-missin.patch 1371-9pfs-fix-off-by-one-error-in-PDU-fr.patch 1372-9pfs-local-move-xattr-security-ops-.patch 1373-9pfs-remove-side-effects-in-local_i.patch 1374-9pfs-remove-side-effects-in-local_o.patch 1375-9pfs-introduce-relative_openat_nofo.patch 1376-9pfs-local-keep-a-file-descriptor-o.patch 1377-9pfs-local-open-opendir-don-t-follo.patch 1378-9pfs-local-lgetxattr-don-t-follow-s.patch 1379-9pfs-local-llistxattr-don-t-follow-.patch 1380-9pfs-local-lsetxattr-don-t-follow-s.patch 1381-9pfs-local-lremovexattr-don-t-follo.patch 1382-9pfs-local-unlinkat-don-t-follow-sy.patch 1383-9pfs-local-remove-don-t-follow-syml.patch 1384-9pfs-local-utimensat-don-t-follow-s.patch 1385-9pfs-local-statfs-don-t-follow-syml.patch 1386-9pfs-local-truncate-don-t-follow-sy.patch 1387-9pfs-local-readlink-don-t-follow-sy.patch 1388-9pfs-local-lstat-don-t-follow-symli.patch 1389-9pfs-local-renameat-don-t-follow-sy.patch 1390-9pfs-local-rename-use-renameat.patch 1391-9pfs-local-improve-error-handling-i.patch 1392-9pfs-local-link-don-t-follow-symlin.patch 1393-9pfs-local-chmod-don-t-follow-symli.patch 1394-9pfs-local-chown-don-t-follow-symli.patch 1395-9pfs-local-symlink-don-t-follow-sym.patch 1396-9pfs-local-mknod-don-t-follow-symli.patch 1397-9pfs-local-mkdir-don-t-follow-symli.patch 1398-9pfs-local-open2-don-t-follow-symli.patch 1399-9pfs-local-drop-unused-code.patch 1400-9pfs-fix-bogus-fd-check-in-local_re.patch 1401-9pfs-fix-fd-leak-in-local_opendir.patch 1402-9pfs-fail-local_statfs-earlier.patch 1403-9pfs-don-t-use-AT_EMPTY_PATH-in-loc.patch 1404-9pfs-fix-O_PATH-build-break-with-ol.patch 1405-9pfs-fix-vulnerability-in-openat_di.patch 1406-9pfs-don-t-try-to-flush-self-and-av.patch 1407-9pfs-fix-file-descriptor-leak.patch * Fix DOS in virfs interface (CVE-2017-8086 bsc#1035950) 1408-9pfs-xattr-fix-memory-leak-in-v9fs_.patch * Fix potential privilege escalation in virtfs (CVE-2017-7471 bsc#1034866) 1409-9pfs-local-set-the-path-of-the-expo.patch * Fix regression introduced by recent virtfs security fixes (bsc#1045035) 1410-9pfs-local-remove-use-correct-path-.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Jun 20 08:44:58 UTC 2017 - lma@suse.com - Fix KVM guests unresponsive, qemu-kvm stuck waiting for sg_io() completion (bsc#1034044) 1298-scsi-make-default-command-timeout-u.patch ------------------------------------------------------------------- Fri May 5 01:12:35 UTC 2017 - lma@suse.com - Fix pvmove with disk disk device=lun results in I/O errors (bsc#1031051) 1297-scsi-disk-fix-bug-in-scsi_block_new.patch ------------------------------------------------------------------- Wed Apr 19 15:53:35 UTC 2017 - brogers@suse.com - Fix backporting error in recently added patch: 1295-watchdog-6300esb-add-exit-function.patch ------------------------------------------------------------------- Thu Feb 16 18:35:53 UTC 2017 - brogers@suse.com - Fix DOS in usb CCID card device emulator (CVE-2017-5898 bsc#1023907) 1294-usb-ccid-check-ccid-apdu-length.patch - Fix DOS in Intel 6300ESB device emulation (CVE-2016-10155 bsc#1021129) 1295-watchdog-6300esb-add-exit-function.patch - Fix DOS in megasas device emulation (CVE-2017-5856 bsc#1023053) 1296-megasas-fix-guest-triggered-memory-.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Wed Feb 15 12:11:19 UTC 2017 - brogers@suse.com - Follow upstream's replacement for patch we carry * Patches dropped (patch reverted upstream): 1289-cirrus-allow-zero-source-pitch-in-p.patch * Patches renamed: 1290-cirrus-fix-blit-address-mask-handli.patch -> 1289-cirrus-fix-blit-address-mask-handli.patch 1291-cirrus_vga-fix-off-by-one-in-blit_r.patch -> 1290-cirrus_vga-fix-off-by-one-in-blit_r.patch 1292-cirrus-fix-oob-access-issue-CVE-201.patch -> 1291-cirrus-fix-oob-access-issue-CVE-201.patch * Patches added: (replacement for dropped patch) 1292-cirrus-fix-patterncopy-checks.patch - Fix OOB access in cirrus vga emulation (CVE-2017-2620 bsc#1024972) 1293-cirrus-add-blit_is_unsafe-call-to-c.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Fri Feb 3 18:16:15 UTC 2017 - brogers@suse.com - Address various security/stability issues * Fix various inaccuracies in cirrus vga device emulation 1288-cirrus-handle-negative-pitch-in-cir.patch 1289-cirrus-allow-zero-source-pitch-in-p.patch 1290-cirrus-fix-blit-address-mask-handli.patch 1291-cirrus_vga-fix-off-by-one-in-blit_r.patch * Fix OOB access in cirrus vga emulation (CVE-2017-2615 bsc#1023004) 1292-cirrus-fix-oob-access-issue-CVE-201.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Thu Feb 2 22:51:03 UTC 2017 - brogers@suse.com - Address various security/stability issues * Fix DOS in ColdFire Fast Ethernet Controller emulation (CVE-2016-9776 bsc#1013285) 1278-net-mcf-check-receive-buffer-size-r.patch * Fix DOS in usb ehci emulation (CVE-2016-9911 bsc#1014111) 1279-usb-ehci-fix-memory-leak-in-ehci_in.patch * Fix DOS in usb redirection (CVE-2016-9907 bsc#1014109) 1280-usbredir-free-vm_change_state_handl.patch * Fix DOS in cirrus vga interface (CVE-2016-9921 CVE-2016-9922 bsc#1014702 bsc#1015169) 1281-display-cirrus-check-vga-bits-per-p.patch * Fix graphical update errors introduced by previous security fix (bsc#1016779) 1282-display-cirrus-ignore-source-pitch-.patch * Fix virtio interface failure (bsc#1015048) 1283-virtio-cache-used_idx-in-a-VirtQueu.patch 1284-virtio-recalculate-vq-inuse-after-m.patch 1285-virtio-decrement-vq-inuse-in-virtqu.patch 1286-virtio-zero-vq-inuse-in-virtio_rese.patch 1287-virtio-fix-vq-inuse-recalc-after-mi.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Nov 8 17:36:49 UTC 2016 - brogers@suse.com - Address various security/stability issues * Fix OOB access in xlnx.xpx-ethernetlite emulation (CVE-2016-7161 bsc#1001151) 1260-hw-net-Fix-a-heap-overflow-in-xlnx..patch * Fix OOB access in VMware SVGA emulation (CVE-2016-7170 bsc#998516) 1261-vmsvga-more-cursor-checks.patch 1262-vmsvga-correct-bitmap-and-pixmap-si.patch * Fix DOS in ColdFire Fast Ethernet Controller emulation (CVE-2016-7908 bsc#1002550) 1263-net-mcf-limit-buffer-descriptor-cou.patch * Fix DOS in USB xHCI emulation (CVE-2016-8576 bsc#1003878) 1264-xhci-limit-the-number-of-link-trbs-.patch * Fix DOS in virtio-9pfs (CVE-2016-8578 bsc#1003894) 1265-9pfs-allocate-space-for-guest-origi.patch * Fix DOS in virtio-9pfs (CVE-2016-9105 bsc#1007494) 1266-9pfs-fix-memory-leak-in-v9fs_link.patch * Fix DOS in virtio-9pfs (CVE-2016-8577 bsc#1003893) 1267-9pfs-fix-potential-host-memory-leak.patch * Plug data leak in virtio-9pfs interface (CVE-2016-9103 bsc#1007454) 1268-9pfs-fix-information-leak-in-xattr-.patch * Fix DOS in virtio-9pfs interface (CVE-2016-9102 bsc#1007450) 1269-9pfs-fix-memory-leak-in-v9fs_xattrc.patch * Fix DOS in virtio-9pfs (CVE-2016-9106 bsc#1007495) 1270-9pfs-fix-memory-leak-in-v9fs_write.patch * Fix DOS in 16550A UART emulation (CVE-2016-8669 bsc#1004707) 1271-char-serial-check-divider-value-aga.patch * Fix DOS in PC-Net II emulation (CVE-2016-7909 bsc#1002557) 1272-net-pcnet-check-rx-tx-descriptor-ri.patch * Fix DOS in PRO100 emulation (CVE-2016-9101 bsc#1007391) 1273-net-eepro100-fix-memory-leak-in-dev.patch * Fix DOS in RTL8139 emulation (CVE-2016-8910 bsc#1006538) 1274-net-rtl8139-limit-processing-of-rin.patch * Fix DOS in Intel HDA controller emulation (CVE-2016-8909 bsc#1006536) 1275-audio-intel-hda-check-stream-entry-.patch * Fix DOS in virtio-9pfs (CVE-2016-9104 bsc#1007493) 1276-9pfs-fix-integer-overflow-issue-in-.patch * Fix DOS in JAZZ RC4030 emulation (CVE-2016-8667 bsc#1004702) 1277-dma-rc4030-limit-interval-timer-rel.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Wed Sep 28 17:43:10 UTC 2016 - brogers@suse.com - Remove semi-contradictory and now determined erroneous statement in kvm-supported.txt regarding not running ntp in kvm guest when kvm-clock is used. It is now recommended to use ntp in guest in this case. ------------------------------------------------------------------- Wed Sep 14 15:34:52 UTC 2016 - brogers@suse.com - Address various security/stability issues * Fix potential DOS in e1000 emulation (CVE-2015-6815 bsc#944697) 1244-e1000-Avoid-infinite-loop-in-proces.patch * Fix potential DOS in usb net device emulator (CVE-2016-2392 bsc#967012) 1245-usb-check-USB-configuration-descrip.patch * Fix memory leak in ohci emulation (CVE-2016-2391 bsc#967013) 1246-ohci-allocate-timer-only-once.patch * Avoid OOB access in MegaRAID SAS emulation (CVE-2016-5106 bsc#982018) 1247-scsi-megasas-use-appropriate-proper.patch * Plug data leak in MegaRAID SAS emulation (CVE-2016-5105 bsc#982017) 1248-scsi-megasas-initialise-local-confi.patch * Avoid OOB access in MegaRAID SAS emulation (CVE-2016-5107 bsc#982019) 1249-scsi-megasas-check-read_queue_head-.patch * Avoid OOB access processing iSCSI async I/O ioctl(2) calls (CVE-2016-5126 bsc#982285) 1250-block-iscsi-avoid-potential-overflo.patch * Fix basic validation of vmsvga fifo data (CVE-2016-4454 bsc#982222) 1251-vmsvga-move-fifo-sanity-checks-to-v.patch * Fix potential DOS in vmsvga emulation (CVE-2016-4453 bsc#982223) 1252-vmsvga-don-t-process-more-than-1024.patch * Avoid OOB access in 53C9X emulation (CVE-2016-5338 bsc#983982) 1253-scsi-esp-check-TI-buffer-index-befo.patch * Avoid OOB access in 53C9X emulation (CVE-2016-5337 bsc#983961) 1254-scsi-megasas-null-terminate-bios-ve.patch * Avoid OOB access in 53C9X emulation (CVE-2016-5238 bsc#982959) 1255-scsi-esp-respect-FIFO-invariant-aft.patch * Fix potential DOS via unbounded memory allocations in virtio (CVE-2016-5403 bsc#991080) 1256-virtio-error-out-if-guest-exceeds-v.patch * Fix potential DOS in virtio via infinite loop (CVE-2016-6490 bsc#991466) 1257-virtio-check-vring-descriptor-buffe.patch * Fix directory traversal flaw in 9p virtio backend (CVE-2016-7116 bsc#996441) 1258-9pfs-handle-walk-of-.-in-the-root-d.patch * Verify bits per pixel from client is valid before using value (CVE-2014-7815 bsc#902737) 1259-vnc-sanitize-bits_per_pixel-from-th.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Jun 7 05:42:45 UTC 2016 - lma@suse.com - Fix sata disk I/O error via backport. (bsc#982356) 1243-ahci-Fix-FLUSH-command.patch ------------------------------------------------------------------- Tue May 24 18:39:57 UTC 2016 - brogers@suse.com - Address various security/stability issues * Fix regression of vga behavior introduced with fix for CVE-2016-3712 (bsc#978160) 1240-vga-add-sr_vbe-register-set.patch * Avoid OOB access in 53C9X emulation (CVE-2016-4439 bsc#980711) 1241-esp-check-command-buffer-length-bef.patch * Avoid OOB access in 53C9X emulation (CVE-2016-4441 bsc#980723) 1242-esp-check-dma-length-before-reading.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue May 3 19:23:26 UTC 2016 - brogers@suse.com - Address security issues in guest vga emulation * Fix vga emulation based OOB access with potential for guest escape CVE-2016-3710 (bsc#978158) 1235-vga-fix-banked-access-bounds-checki.patch * Fix vga emulation based DOS and OOB read access exploit CVE-2016-3712 (bsc#978160) 1236-vga-add-vbe_enabled-helper.patch 1237-vga-factor-out-vga-register-setup.patch 1238-vga-update-vga-register-setup-on-vb.patch 1239-vga-make-sure-vga-register-setup-fo.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Apr 26 18:02:23 UTC 2016 - brogers@suse.com - Address various security/stability issues - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP3 * Fix usb ehci based DOS CVE-2016-4037 (bsc#976109) (supercedes previous CVE-2015-8558 fix due to better algorithm) 1206-ehci-make-idt-processing-more-robus.patch (dropped) 1206-ehci-apply-limit-to-iTD-sidt-descri.patch * Fix potential OOB access in usb net device emulation CVE-2016-2538 (bsc#967969) 1224-usb-check-RNDIS-buffer-offsets-leng.patch * Fix OOB access / hang in ne2000 emulation CVE-2016-2841 (bsc#969350) 1225-net-ne2000-check-ring-buffer-contro.patch * Avoid potential DOS when using QEMU pseudo random number generator CVE-2016-2858 (bsc#970036) 1226-rng-remove-the-unused-request-cance.patch 1227-rng-move-request-queue-from-RngEgd-.patch 1228-rng-move-request-queue-cleanup-from.patch 1229-rng-add-request-queue-support-to-rn.patch * Fix OOB access when processing IP checksums CVE-2016-2857 (bsc#970037) 1230-net-check-packet-payload-length.patch * Fix OOB access in Stellaris enet emulated nic CVE-2016-4001 (bsc#975128) 1231-net-stellaris_enet-check-packet-len.patch * Fix OOB access in MIPSnet emulated controller CVE-2016-4002 (bsc#975136) 1232-net-mipsnet-check-packet-length-aga.patch * Fix possible host data leakage to guest from TPR access CVE-2016-4020 (bsc#975700) 1233-i386-kvmvapic-initialise-imm32-vari.patch ------------------------------------------------------------------- Thu Mar 17 14:27:25 UTC 2016 - afaerber@suse.com - Fix i8254 CVE-2015-3214 (bsc#934069) 1224-i8254-fix-out-of-bounds-memory-acce.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Tue Mar 15 22:18:53 UTC 2016 - brogers@suse.com - Fix the handling of malformed or short ide PRDTs to avoid any opportunity for guest to cause DoS by abusing that interface. (CVE-2014-9718 bsc#928393) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1223-ide-Correct-handling-of-malformed-s.patch ------------------------------------------------------------------- Mon Feb 29 18:11:59 UTC 2016 - afaerber@suse.com - Fix VMware VGA CVE-2014-3689 (bsc#901508) 1218-vmware-vga-CVE-2014-3689-turn-off-h.patch 1219-vmware-vga-add-vmsvga_verify_rect.patch 1220-vmware-vga-use-vmsvga_verify_rect-i.patch 1221-vmware-vga-use-vmsvga_verify_rect-i.patch 1222-vmware-vga-use-vmsvga_verify_rect-i.patch - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 ------------------------------------------------------------------- Thu Feb 4 20:00:49 UTC 2016 - brogers@suse.com - Avoid potential QEMU DoS for long HMP sendkey command argument (CVE-2015-8619 bsc#960334) - Fix case of malicious privileged guest user being able to cause QEMU DoS by writing to read-only EHCI capabilities registers (CVE-2016-2198 bsc#964413) - Avoid potential QEMU DoS (infinite loop) in e1000 device emulation, causable by malicious privileged user within guest (CVE-2016-1981 bsc#963782) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1215-hmp-fix-sendkey-out-of-bounds-write.patch 1216-usb-ehci-add-capability-mmio-write-.patch 1217-e1000-eliminate-infinite-loops-on-o.patch ------------------------------------------------------------------- Thu Jan 28 03:16:38 UTC 2016 - cyliu@suse.com - Fix integer overflow in vnc_client_read() and protocol_client_msg() (CVE-2015-5239 bsc#944463) - Fix information leakage when guest sets high resolution (CVE-2014-3615 bsc#895528) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1212-vbe-make-bochs-dispi-interface-retu.patch 1213-vbe-rework-sanity-checks.patch 1214-ui-vnc-limit-client_cut_text-msg-pa.patch ------------------------------------------------------------------- Wed Jan 27 06:16:15 UTC 2016 - lma@suse.com - Fix vulnerabilities in vnc floating point exception. (CVE-2015-8504 bsc#958491) - Fix vulnerabilities in buffer overflow in virtio-serial. (CVE-2015-5745 bsc#940929) - Fix vulnerabilities in infinite loop in ehci_advance_state results in DoS. (CVE-2015-8558 bsc#959005) - Fix vulnerabilities in pci null pointer dereference issue. (CVE-2015-7549 bsc#958917) - Fix vulnerabilities in ne2000 OOB memory access in ioport r/w functions. (CVE-2015-8743 bsc#960725) - Fix vulnerabilities in ahci use-after-free vulnerability in aio port commands. (CVE-2016-1568 bsc#961333) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1205-ui-vnc-avoid-floating-point-excepti.patch 1206-virtio-serial-fix-ANY_LAYOUT.patch 1207-ehci-make-idt-processing-more-robus.patch 1208-msix-implement-pba-write-but-read-o.patch 1209-net-ne2000-fix-bounds-check-in-iopo.patch 1210-ahci-add-ncq_err-helper.patch 1211-ide-ahci-reset-ncq-object-to-unused.patch ------------------------------------------------------------------- Tue Jan 26 21:22:26 UTC 2016 - brogers@suse.com - Fix potential OOB memory access in processing firmware configuration. (CVE-2016-1714 bsc#961691) - Fix potential NULL pointer derefernce when processing hmp i/o command. (CVE-2016-1922 bsc#962320) - Fix wrong sized memset in megasas command handler. (CVE-2015-8613 bsc#961556) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1202-fw_cfg-add-check-to-validate-curren.patch 1203-i386-avoid-null-pointer-dereference.patch 1204-scsi-initialise-info-object-with-ap.patch ------------------------------------------------------------------- Fri Jan 8 17:12:58 UTC 2016 - brogers@suse.com - Fix vulnerabilities in ne2000 nic emulation. (CVE-2015-5278 bsc#945989) (CVE-2015-5279 bsc#945987) - Fix vulnerability in ide emulation - potential divide-by-zero. (CVE-2015-6855 bsc#945404) - Fix vulnerability in virtio-net where local network attacker could achieve a DoS state in the guest virtio-net interface. (CVE-2015-7295 bsc#947159) - Fix case of IDE interface needing busy status set before flush. (bsc#936132) - Update kvm-supported.txt with current list of supported guests, and added recommendation about use of newer command line options. - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1195-net-add-checks-to-validate-ring-buf.patch 1196-net-avoid-infinite-loop-when-receiv.patch 1197-virtio-introduce-virtqueue_unmap_sg.patch 1198-virtio-introduce-virtqueue_discard.patch 1199-virtio-net-correctly-drop-truncated.patch 1200-ide-fix-ATAPI-command-permissions.patch 1201-ide-Set-BSY-bit-during-FLUSH.patch ------------------------------------------------------------------- Fri Dec 4 22:32:25 UTC 2015 - brogers@suse.com - To assist users past the migration incompatibility discussed in bsc#950590 (restore migration compatibility with SLE11 SP3 and SLE12, at the unfortunate expense to prior SLE11 SP4 kvm release compatability when a virtio-net device is used), print a message which references the support document TID 7017048. See https://www.suse.com/support/kb/doc.php?id=7017048 - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1194-savevm-Produce-message-in-case-of-f.patch ------------------------------------------------------------------- Thu Dec 3 17:47:06 UTC 2015 - brogers@suse.com - Enforce receive packet size, thus eliminating buffer overflow and potential security issue. (bsc#957162 CVE-2015-7512) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1193-pcnet-fix-rx-buffer-overflow-CVE-20.patch ------------------------------------------------------------------- Wed Dec 2 03:25:05 UTC 2015 - cyliu@suse.com - Security Fix: CVE-2015-8345 (bsc#956829): qemu: net: eepro100: infinite loop in processing command block list - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1192-eepro100-Prevent-two-endless-loops.patch ------------------------------------------------------------------- Wed Nov 18 20:26:05 UTC 2015 - brogers@suse.com - Fix cases of wrong clock values in kvmclock timekeeping (bsc#947164 and bsc#953187) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1188-kvmclock-clock-should-count-only-if.patch 1189-Introduce-cpu_clean_all_dirty.patch 1190-kvmclock-Ensure-proper-env-tsc-valu.patch 1191-kvmclock-Ensure-time-in-migration-n.patch ------------------------------------------------------------------- Tue Nov 17 22:52:44 UTC 2015 - brogers@suse.com - Enforce pxe rom sizes to ensure migration compatibility. (bsc#950590) ------------------------------------------------------------------- Thu Nov 5 04:58:34 UTC 2015 - lma@suse.com - Fix KVM live migration fails between SLES11 SP3 and SP4 (bsc#950590) ipxe-text-data-align-4-bytes-explicitly-for-setjmp-librm.patch ------------------------------------------------------------------- Thu Jul 16 15:48:02 UTC 2015 - brogers@suse.com - Fix potential heap overflow in IDE subsystem when certain ATAPI commands are processed. (CVE-2015-5154 bsc#938344) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1185-ide-Check-array-bounds-before-writi.patch 1186-ide-atapi-Fix-START-STOP-UNIT-comma.patch 1187-ide-Clear-DRQ-after-handling-all-ex.patch ------------------------------------------------------------------- Fri Jun 5 21:25:11 UTC 2015 - brogers@suse.com - Avoid predictable directory name for smb config (bsc#932267 CVE-2015-4037) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1184-slirp-use-less-predictable-director.patch ------------------------------------------------------------------- Tue Jun 2 14:59:50 UTC 2015 - brogers@suse.com - Fix buffer overflow in pcnet emulation (bsc#932770 CVE-2015-3209) - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE11-SP4 * Patches added: 1182-pcnet-fix-Negative-array-index-read.patch 1183-pcnet-force-the-buffer-access-to-be.patch ------------------------------------------------------------------- Tue May 12 18:30:26 UTC 2015 - afaerber@suse.com - Fix CVE-2015-3456 (bsc#929339) 1181-fdc-force-the-fifo-access-to-be-in-.patch ------------------------------------------------------------------- Fri Apr 24 16:37:54 UTC 2015 - brogers@suse.com - Update release related information in kvm-supported.txt ------------------------------------------------------------------- Thu Apr 23 21:11:56 UTC 2015 - brogers@suse.com - Streamline update_git.sh workflow ------------------------------------------------------------------- Wed Apr 22 15:41:59 UTC 2015 - afaerber@suse.com - Fix CVE-2015-1779 (bsc#924018) for VNC websockets 1179-CVE-2015-1779-incrementally-decode-.patch 1180-CVE-2015-1779-limit-size-of-HTTP-he.patch - Update update_git.sh server ------------------------------------------------------------------- Mon Apr 20 02:50:53 UTC 2015 - brogers@suse.com - Fix issue causing virtio-blk driver to incorrectly set its WCE configuration. In the bug report (bsc#920571) severe file system corruption occurred because cache flushes were not generated as they ought to have been. 1178-virtio-blk-do-not-relay-a-previous-.patch ------------------------------------------------------------------- Mon Feb 23 17:29:04 UTC 2015 - brogers@suse.com - Update kvm-supported.txt with the current rbd support status. ------------------------------------------------------------------- Thu Feb 5 15:28:03 UTC 2015 - brogers@suse.com - Update update_git.sh to reference SLE11-SP4 git branch for patch queue (split from SP3) ------------------------------------------------------------------- Fri Jan 30 16:13:05 UTC 2015 - brogers@suse.com - Enable rbd / ceph support due to ECO/FATE#318330 Removed patches: 1052-Plugin-support-Compile-code-with-fP.patch 1053-block-Add-a-RBD-Wrapper-block-drive.patch (subsequent patches got renumbered) ------------------------------------------------------------------- Thu Jan 8 18:51:53 UTC 2015 - afaerber@suse.com - Fix incorrect return value of migrate_cancel (bnc#843074) by lma@suse.com 1179-migration-Fix-incorrect-state-infor.patch ------------------------------------------------------------------- Wed Jan 7 17:27:05 UTC 2015 - agraf@suse.com - Fix CVE-2014-7840 (bnc#905097) 1175-migration-fix-parameter-validation-.patch 1176-exec-add-wrapper-for-host-pointer-a.patch 1177-cpu-assert-host-pointer-offset-with.patch 1178-cpu-verify-that-block-host-is-set.patch ------------------------------------------------------------------- Fri Dec 19 22:56:07 UTC 2014 - afaerber@suse.com - Fix CVE-2014-8106 (bnc#907805) 1173-cirrus-fix-blit-region-check.patch 1174-cirrus-don-t-overflow-CirrusVGAStat.patch ------------------------------------------------------------------- Tue Dec 9 20:47:52 UTC 2014 - brogers@suse.com - Fix performance degradation after migration (bnc#878350) (Checked in for lma@suse.com) 1162-iov-Factor-out-hexdumper.patch 1163-migration-Improve-QMP-documentation.patch 1164-move-vector-definitions-to-qemu-com.patch 1165-cutils-add-a-function-to-find-non-z.patch 1166-migration-search-for-zero-instead-o.patch 1167-migration-add-an-indicator-for-bulk.patch 1168-migration-do-not-sent-zero-pages-in.patch 1169-migration-do-not-search-dirty-pages.patch 1170-migration-use-XBZRLE-only-after-bul.patch 1171-Revert-migration-do-not-sent-zero-p.patch 1172-migration-do-not-overwrite-zero-pag.patch ------------------------------------------------------------------- Thu Dec 4 21:52:26 UTC 2014 - brogers@suse.com - Fix potential image corruption due to missing FIEMAP_FLAG_SYNC flag in FS_IOC_FIEMAP ioctl. (bnc#908381) 1159-block-raw-posix-Try-both-FIEMAP-and.patch 1160-block-raw-posix-Fix-disk-corruption.patch 1161-block-raw-posix-use-seek_hole-ahead.patch ------------------------------------------------------------------- Sat Nov 29 11:22:32 UTC 2014 - lma@suse.com - Add validate hex properties for qdev (bnc#852397) 1158-qdev-Validate-hex-properties.patch - Add boot option to do strict boot (bnc#900084) 1157-add-a-boot-option-to-do-strict-boot.patch ------------------------------------------------------------------- Wed Oct 1 21:01:44 UTC 2014 - brogers@suse.com - Add query-command-line-options QMP command for bnc#899144 1156-monitor-introduce-query-command-lin.patch ------------------------------------------------------------------- Wed Sep 24 17:41:27 UTC 2014 - afaerber@suse.com - Fix CVE-2014-3640 (bnc#897654) 1155-slirp-udp-fix-NULL-pointer-derefere.patch ------------------------------------------------------------------- Thu Sep 18 11:30:03 UTC 2014 - afaerber@suse.com - Fix CVE-2014-0223 (bnc#877645) 1153-qcow1-Validate-image-size-CVE-2014-.patch - Fix CVE-2014-3461 (bnc#878541) 1154-usb-fix-up-post-load-checks.patch ------------------------------------------------------------------- Thu Sep 11 15:51:48 UTC 2014 - afaerber@suse.com - Fix CVE-2014-0222 (bnc#877642) 1151-qcow1-Check-maximum-cluster-size.patch 1152-qcow1-Validate-L2-table-size-CVE-20.patch ------------------------------------------------------------------- Thu Sep 11 15:51:48 UTC 2014 - agraf@suse.com - Fix exceeding IRQ routes (bnc#876842) 1147-KVM-Fix-GSI-number-space-limit.patch 1150-KVM-Extend-dynamic-MSI-route-flush.patch - Fix CPUID emulation bugs that may break Windows guests with newer -cpu types (bnc#886535) 1148-x86-PMU-Disable-vPMU-cpuid-exposure.patch 1149-x86-XSAVE-Reconstruct-xsave-cpuid-l.patch ------------------------------------------------------------------- Mon May 12 18:28:40 UTC 2014 - afaerber@suse.com - Fix CVE-2013-4148 (bnc#864812) 1122-virtio-net-fix-buffer-overflow-on-i.patch - Fix CVE-2013-4149 (bnc#864649) 1145-virtio-net-out-of-bounds-buffer-wri.patch - Fix CVE-2013-4150 (bnc#864650) 1123-virtio-net-out-of-bounds-buffer-wri.patch - Fix CVE-2013-4151 (bnc#864653) 1124-virtio-out-of-bounds-buffer-write-o.patch - Fix CVE-2013-4526 (bnc#864671) 1125-ahci-fix-buffer-overrun-on-invalid-.patch - Fix CVE-2013-4527 (bnc#864673) 1128-hpet-fix-buffer-overrun-on-invalid-.patch - Fix CVE-2013-4529 (bnc#864678) 1129-hw-pci-pcie_aer.c-fix-buffer-overru.patch - Fix CVE-2013-4530 (bnc#864682) - not built 1130-pl022-fix-buffer-overun-on-invalid-.patch - Fix CVE-2013-4531 (bnc#864796) 1132-vmstate-fix-buffer-overflow-in-targ.patch - Fix CVE-2013-4533 (bnc#864655) - not built 1135-pxa2xx-avoid-buffer-overrun-on-inco.patch - Fix CVE-2013-4534 (bnc#864811) - not built 1144-openpic-avoid-buffer-overrun-on-inc.patch - Fix CVE-2013-4535 / CVE-2013-4536 (bnc#864665) 1134-virtio-validate-num_sg-when-mapping.patch - Fix CVE-2013-4537 (bnc#864391) - not built 1143-ssi-sd-fix-buffer-overrun-on-invali.patch - Fix CVE-2013-4538 (bnc#864769) - not built 1136-ssd0323-fix-buffer-overun-on-invali.patch - Fix CVE-2013-4539 (bnc#864805) - not built 1137-tsc210x-fix-buffer-overrun-on-inval.patch - Fix CVE-2013-4540 (bnc#864801) - not built 1138-zaurus-fix-buffer-overrun-on-invali.patch - Fix CVE-2013-4541 (bnc#864802) 1141-usb-sanity-check-setup_index-setup_.patch - Fix CVE-2013-4542 (bnc#864804) 1139-virtio-scsi-fix-buffer-overrun-on-i.patch - Fix CVE-2013-6399 (bnc#864814) 1133-virtio-avoid-buffer-overrun-on-inco.patch - Fix CVE-2014-0182 (bnc#874788) 1146-virtio-validate-config_len-on-load.patch ------------------------------------------------------------------- Tue May 6 16:52:45 UTC 2014 - afaerber@suse.com - Fix CVE-2014-0150 (bnc#873235) 1121-virtio-net-fix-guest-triggerable-bu.patch ------------------------------------------------------------------- Fri Apr 18 22:04:28 UTC 2014 - afaerber@suse.com - Fix CVE-2014-2894 (bnc#874749) 1120-ide-Correct-improper-smart-self-tes.patch ------------------------------------------------------------------- Thu Apr 10 15:29:03 UTC 2014 - afaerber@suse.com - Fix update_git.sh to avoid duplicate .patch in file names ------------------------------------------------------------------- Thu Apr 10 15:22:00 UTC 2014 - afaerber@suse.com - Bump kvm.spec.in copyright to 2014 to avoid overwriting it back and forth ------------------------------------------------------------------- Tue Apr 8 16:11:38 UTC 2014 - afaerber@suse.com - Fix virtio CVE-2013-2016 (bnc#817593) 1119-virtio-properly-validate-address-be.patch ------------------------------------------------------------------- Wed Apr 2 20:08:59 UTC 2014 - afaerber@suse.com - Fix various block layer security issues (bnc#870439) * Fix CVE-2014-0142 1084-bochs-Check-extent_size-header-fiel.patch 1087-vpc-Validate-block-size-CVE-2014-01.patch 1118-parallels-Sanity-check-for-s-tracks.patch * Fix CVE-2014-0143 1077-block-cloop-prevent-offsets_size-in.patch 1083-bochs-Check-catalog_size-header-fie.patch 1098-qcow2-Avoid-integer-overflow-in-get.patch 1103-qcow2-Fix-new-L1-table-size-check-C.patch 1111-block-Limit-request-size-CVE-2014-0.patch 1115-qcow2-Check-maximum-L1-size-in-qcow.patch 1117-parallels-Fix-catalog-size-integer-.patch * Fix CVE-2014-0144 1076-block-cloop-validate-block_size-hea.patch 1078-block-cloop-refuse-images-with-huge.patch 1079-block-cloop-refuse-images-with-bogu.patch 1086-vpc-vhd-add-bounds-check-for-max_ta.patch 1088-vdi-add-bounds-checks-for-blocks_in.patch 1089-curl-check-data-size-before-memcpy-.patch 1090-qcow2-Check-header_length-CVE-2014-.patch 1091-qcow2-Check-backing_file_offset-CVE.patch 1092-qcow2-Check-refcount-table-size-CVE.patch 1094-qcow2-Validate-snapshot-table-offse.patch 1095-qcow2-Validate-active-L1-table-offs.patch * Fix CVE-2014-0145 1108-dmg-sanitize-chunk-length-and-secto.patch 1110-dmg-prevent-chunk-buffer-overflow-C.patch 1114-qcow2-Fix-L1-allocation-size-in-qco.patch * Fix CVE-2014-0146 1113-qcow2-Fix-NULL-dereference-in-qcow2.patch * Fix CVE-2014-0147 1082-bochs-Use-unsigned-variables-for-of.patch 1097-qcow2-Don-t-rely-on-free_cluster_in.patch ------------------------------------------------------------------- Wed Apr 2 17:28:59 UTC 2014 - afaerber@suse.com - Fix SCSI REPORT LUNS buffer overflow (bnc#842006, CVE-2013-4344) 1075-scsi-Allocate-SCSITargetReq-r-buf-d.patch - Fixed build of rbd_plugin on recent systems by adding -ldl 1053-block-Add-a-RBD-Wrapper-block-drive.patch * Style cleanups * Simplified license (code was from 22 Oct 2013, so after 2012-01-13) * Switched order with 1052-Plugin-support-Compile-code-with-fP.patch ------------------------------------------------------------------- Thu Mar 6 18:32:47 UTC 2014 - afaerber@suse.com - Fix CVE-2013-4541 (bnc#864802) via backport: 1074-usb-sanity-check-setup_index-setup_.patch ------------------------------------------------------------------- Thu Mar 6 17:28:09 UTC 2014 - afaerber@suse.com - Import v1.6.0 sources for s390-ccw.img and drop pre-built binary 1055-S390-ccw-firmware-Add-start-assembl.patch 1056-S390-ccw-firmware-Add-main-program..patch 1057-S390-ccw-firmware-Add-sclp-output.p.patch 1058-S390-ccw-firmware-Add-virtio-device.patch 1059-S390-ccw-firmware-Add-glue-header.p.patch 1060-S390-ccw-firmware-Add-bootmap-inter.patch 1061-S390-ccw-firmware-Add-Makefile.patc.patch 1062-s390-ccw.img-replace-while-loop-wit.patch 1063-s390-ccw.img-Take-care-of-the-elf-i.patch 1064-s390-ccw.img-Fix-compile-warning-in.patch 1065-s390-ccw.img-Detect-devices-with-st.patch 1066-s390-ccw.img-Enhance-drain_irqs.pat.patch 1067-s390-ccw.img-Rudimentary-error-chec.patch 1068-s390-ccw.img-Get-queue-config-from-.patch 1069-S390-BIOS-boot-from-given-device.pa.patch 1070-s390-ipl-Fix-spurious-errors-in-vir.patch - Backport reset-related s390-ccw.img fixes (bnc#812983) 1071-s390-ipl-Fix-waiting-for-virtio-pro.patch 1072-s390-ccw.img-Fix-sporadic-reboot-ha.patch 1073-s390-ccw.img-Fix-sporadic-errors-wi.patch ------------------------------------------------------------------- Mon Jan 27 19:50:30 UTC 2014 - brogers@suse.com - Provide dummy color map for vnc viewers which may request a color map. (bnc#842088) - Add 1054-vnc-provide-fake-color-map.patch.patch ------------------------------------------------------------------- Fri Jan 24 03:15:52 UTC 2014 - brogers@suse.com - In support of the SUSE Cloud Ceph initiative, KVM now builds for compatability with a dynamically loaded rbd plugin. Currently this plugin is not single sourced with this package. (FATE#316580, bnc#858858) - Add 1052-Add-a-RBD-Wrapper-block-driver.patc.patch - Add 1053-Plugin-support-Compile-code-with-fP.patch - Clarify caching mode statements in kvm-supported.txt ------------------------------------------------------------------- Mon Oct 7 14:07:26 UTC 2013 - afaerber@suse.com - Add patches to allow cross migration from SP2's qemu-kvm 0.15 to qemu 1.4 (bnc#812836, bnc#841080): * VGA memory size differences * i8254 additional state in qemu-kvm * acpi_piix4 version_id differences ------------------------------------------------------------------- Tue Sep 24 15:16:37 UTC 2013 - afaerber@suse.com - Backport fixes for potential rtl8139/pcnet network stalls. ------------------------------------------------------------------- Fri Sep 6 09:00:50 UTC 2013 - afaerber@suse.com - Revert change of Git branch in update_git.sh script ------------------------------------------------------------------- Thu Aug 1 13:10:31 UTC 2013 - afaerber@suse.com - Update to new s390-ccw.img firmware from v1.6.0 * This addresses several boot/reboot issues (bnc#812983) - Fixes for virtio-ccw reset (bnc#812983) ------------------------------------------------------------------- Wed Jul 31 12:28:06 UTC 2013 - afaerber@suse.com - Fixes for s390x dictzip support (bnc#824340) ------------------------------------------------------------------- Thu Jul 25 13:37:10 UTC 2013 - afaerber@suse.com - Backport TLS support for VNC Websockets from QEMU v1.5.0 (bnc#829800, fate#315032) ------------------------------------------------------------------- Tue Jul 16 23:04:27 UTC 2013 - brogers@suse.com - bnc#829800 tracks bugs fixed in v1.4.2 release as well as maintenance update tracking. ------------------------------------------------------------------- Mon Jul 8 15:29:27 UTC 2013 - afaerber@suse.com - Update to QEMU v1.4.2: http://wiki.qemu.org/ChangeLog/1.4 * replaces patch for virtio-rng fix related to fate#310137 * replaces patch for qemu-ga CVE-2013-2007 security fix bnc#818182 * Update update_git.sh accordingly - Fixed copy&paste error in update_git.sh ------------------------------------------------------------------- Sat May 25 20:56:01 UTC 2013 - brogers@suse.com - enable the higher guest memory limit of 2TB (fate#314371) (bnc#819200) ------------------------------------------------------------------- Tue May 7 22:19:29 UTC 2013 - brogers@suse.com - Fix qemu guest agent security issue - insecure permissions used when daemonizing. (bnc#818182) (CVE-2013-2007) ------------------------------------------------------------------- Thu Apr 18 15:28:23 UTC 2013 - afaerber@suse.com - Backport two -cpu ? output fixes (from qom-cpu queue) - Backport a virtio-rng fix (relates to fate#310137) ------------------------------------------------------------------- Wed Apr 17 17:05:44 UTC 2013 - brogers@suse.com - Update qemu to version 1.4.1 - minor spec file fixes ------------------------------------------------------------------- Tue Apr 15 14:05:02 UTC 2013 - afaerber@suse.com - Rebased onto stable-1.4-staging branch (v1.4.1 to be) * Includes fix for live migration (bnc#812836) ------------------------------------------------------------------- Wed Mar 27 11:33:36 UTC 2013 - afaerber@suse.com - virtio-rng: backport file descriptor passthrough support - virtio-rng: backport virtio-ccw support (s390x) ------------------------------------------------------------------- Wed Mar 27 00:41:28 UTC 2013 - agraf@suse.com - s390: remove legacy -M s390-virtio (bnc#811878) ------------------------------------------------------------------- Tue Mar 26 23:37:41 UTC 2013 - agraf@suse.com - s390: fix booting without -kernel (bnc#810329) - s390: fix -drive if=virtio ------------------------------------------------------------------- Mon Mar 25 16:00:40 UTC 2013 - brogers@suse.com - update ipxe to latest upstream sources - eliminates workarounds - more updates to kvm-supported.txt ------------------------------------------------------------------- Tue Mar 19 20:09:49 UTC 2013 - brogers@suse.com - add bridge helper acl config file: /etc/qemu-kvm/bridge.conf ------------------------------------------------------------------- Fri Mar 15 19:35:29 UTC 2013 - brogers@suse.com - miscellaneous build and spec file improvements ------------------------------------------------------------------- Thu Feb 28 15:26:34 UTC 2013 - brogers@suse.com - Update seabios to version 1.7.2.1 - Update content of kvm-supported.txt ------------------------------------------------------------------- Sat Feb 16 00:13:13 UTC 2013 - brogers@suse.com - Update to qemu-kvm v1.4.0 (fate#314781, fate#314754, fate#314733, fate#310914). For changes see: http://wiki.qemu.org/ChangeLog/1.4 Some select features include: - s390 virtio-ccw machine support - virtio-blk data-plane - seccomp 2 based sandboxing - Resolved seabios build issue with upstream solution. ------------------------------------------------------------------- Thu Jan 31 17:08:48 UTC 2013 - brogers@suse.com - Resolved seabios build issue with patch being evaluated upstream. ------------------------------------------------------------------- Mon Jan 21 02:30:44 UTC 2013 - brogers@suse.com - Updated seabios from "random" git release to next release: v1.7.2 - Temporarily work around issue building seabios caused by most recent pmtools update by not building seabios in buildservice, but rather including it as a binary blob. ------------------------------------------------------------------- Wed Jan 16 13:47:45 UTC 2013 - agraf@suse.com - Add support for s390x virtio-ccw machine and default to it (FATE#310914) ------------------------------------------------------------------- Wed Dec 12 20:48:19 CET 2012 - agraf@suse.de - Convert repo to update_git.sh style git syncing ------------------------------------------------------------------- Wed Dec 5 03:32:06 UTC 2012 - brogers@suse.com - Install an s390x config file enabling kvm (bnc#792735) ------------------------------------------------------------------- Mon Dec 3 21:12:14 UTC 2012 - brogers@suse.com - Update to qemu-kvm v1.3.0. For changes see: http://wiki.qemu.org/ChangeLog/1.3 Some select features include: - all remaining differences between qemu-kvm.git and qemu.git have been merged into qemu.git (tarball source) - QEMU can now use the Linux VFIO driver for guest PCI devices - USB3 has been vastly improved, including support for USB mass storage devices and MSI/MSI-X support for the XHCI controller - New paravirtualized hardware random number generator device - New block jobs: live block commit (a.k.a. snapshot deletion) and live disk mirroring (a.k.a "storage migration") - New CPU models: "Haswell" and "Opteron_G5" - USB redirection now supports live migration - NBD block devices can now be specified using URI syntax - QEMU embeds an NBD server, accessible via the monitor - Improved support for sandboxing using seccomp mode 2 - Update to latest seabios sources (git id: 8b73b83) - Update to latest ipxe sources (git id: 717279a) - Enable ide dma in bios config for NetWare ------------------------------------------------------------------- Mon Dec 3 04:50:38 UTC 2012 - boyang@suse.com - Fix permission of qemu-bridge-helper. ------------------------------------------------------------------- Tue Nov 27 02:01:39 UTC 2012 - brogers@suse.com - update to v1.3 rc1 ------------------------------------------------------------------- Tue Nov 20 12:48:05 UTC 2012 - brogers@suse.com - update to v1.3 rc0 - enable kvm acceleration in config file instead of via patch - enable qemu-img-kvm to create VHD images > 127GB (bnc#785085) ------------------------------------------------------------------- Mon Nov 19 12:11:51 UTC 2012 - brogers@suse.com - include pre-release v1.3 qemu, which now has adequate support for kvm. - This partially or in full addresses: - fate#313076 virtio-scsi - fate#314135 virtio-scsi - fate#313968 libseccomp/qemu sandboxing - fate#313969 bridge-helper for non-root usage - fate#313865 zero-copy networking - fate#314400 zero-copy networking - fate#314341 open-fd on commandline support - bnc#758571 cpu irq affinity issue ------------------------------------------------------------------- Fri Sep 14 15:38:43 UTC 2012 - boyang@suse.com - Guest install fails when pxe booting and installing a KVM guest with Intel 82559er. (bnc#712137) ------------------------------------------------------------------- Thu Sep 13 19:23:04 UTC 2012 - brogers@suse.com - remove vestages of Itanium host support. It was dropped as a supported host as of v1.0. ------------------------------------------------------------------- Wed Sep 12 01:31:52 UTC 2012 - brogers@suse.com - Disable bootsplash support in bios to keep size below 128K which permits live migration from SP2 host to SP3 host. ------------------------------------------------------------------- Thu Sep 6 20:37:48 UTC 2012 - brogers@suse.com - Update to qemu-kvm v1.2.0. For changes see: http://wiki.qemu.org/ChangeLog/1.2 - Update to current ipxe (git id e6427b7) - Update seabios to v1.7.1. For changes see: seabios.org/Releases - add next-gen libcap build dependency for better security protection for the bridge-helper. - extboot.bin is now dropped, as it was deprecated in SP2 - win-virtio-drivers.iso is now dropped, as it was deprecated in SP2. Use VMDP virtio drivers for Windows guests instead - rename: vapic.bin -> kvmvapic.bin - new files worth noting are: /usr/bin/virtfs-proxy-helper (and manpage) /usr/lib64/qemu-bridge-helper /usr/share/qemu-kvm/cpus-x86_64.conf ------------------------------------------------------------------- Wed Aug 29 20:18:38 UTC 2012 - brogers@suse.com - Fix VT100 emulation vulnerability (bnc#777084) (CVE-2012-3515) ------------------------------------------------------------------- Wed Aug 8 17:51:06 UTC 2012 - brogers@suse.com - permit qemu-kvm -device "?" even when no /dev/kvm (bnc#772586) ------------------------------------------------------------------- Thu Jul 26 04:03:04 UTC 2012 - boyang@suse.com - SLES11SP2 KVM Virtio: on kvm guest, scsi inquiry was still ok on the disabled subpaths. (bnc#770153) ------------------------------------------------------------------- Fri Jun 15 17:14:14 UTC 2012 - brogers@suse.com - fix vulnerability to temporary file symlink attacks in snapshot file mode. (bnc#764526) (CVE-2012-2652) ------------------------------------------------------------------- Thu May 24 12:24:45 UTC 2012 - brogers@suse.com - For pci device assignment, update legacy interrupts only if used. Don't mess with assign_intx on devices that are in MSI or MSI-X mode, it would corrupt their interrupt routing. (bnc#753313) ------------------------------------------------------------------- Tue May 1 17:00:54 UTC 2012 - brogers@suse.com - A more accurate / correct fix for the hardware certification test failure (bnc#709405) is now included. The virtio code still had a few memory ordering issues. The previous "fix" is dropped. ------------------------------------------------------------------- Fri Apr 27 12:18:21 UTC 2012 - brogers@suse.com - Tight PNG encoding should only be used when --enable-vnc-png set. kvm builds with --disable-vnc-png option and this bug is adversely affecting noVNC. (bnc#757031) ------------------------------------------------------------------- Wed Apr 4 12:00:49 UTC 2012 - brogers@suse.com - the harware certification nic in/out tests were failing in some cases. The guest virtio-net driver would stop receiving packets after some time. Two upstream patches were identified via bisect as addressing the issue. (bnc#709405) - move block_resize monitor command reference from unsupported to supported in kvm-supported.txt to correctly reflect its already supported status. ------------------------------------------------------------------- Tue Mar 20 10:34:43 UTC 2012 - boyang@suse.com - Disable CPU hotplug in qemu monitor (bnc#747339) ------------------------------------------------------------------- Mon Mar 5 17:13:34 UTC 2012 - brogers@suse.com - invoke device reset handler on hotplug (bnc#722958, bnc#722643) - disable vmmouse after reboot (bnc#724813) - add cache=directsync to round out full range of cache options ------------------------------------------------------------------- Wed Feb 1 21:02:09 UTC 2012 - brogers@suse.com - refine the kvm-supported.txt file some more ------------------------------------------------------------------- Tue Jan 17 17:39:57 UTC 2012 - brogers@suse.com - avoid buffer overflow in e1000 device emulation (bnc#740165) ------------------------------------------------------------------- Mon Jan 16 03:50:45 UTC 2012 - brogers@suse.com - large memory guest cannot be installed on KVM (bnc#730877) raise soft address space limit to hard limit ------------------------------------------------------------------- Sun Jan 15 03:42:50 UTC 2012 - brogers@suse.com - correct the ac97 pci subsystem id (bnc#741458) - add 0.15 pc machine type as current -M pc due to virtio event_idx added in version 0.15 (bnc#741460) - fix nmi button to only send to 1 vcpu (bnc#741462) ------------------------------------------------------------------- Mon Dec 19 18:44:10 UTC 2011 - brogers@suse.com - fix floppy (bnc#733777) - fix migration with vhost-net being used (bnc#736783) ------------------------------------------------------------------- Tue Dec 13 12:59:18 UTC 2011 - bkutil@suse.com - Fix dictzip with long file names. ------------------------------------------------------------------- Sat Dec 10 21:54:02 UTC 2011 - brogers@suse.com - remove recently added patch because it was reverted upstream: kvm-qemu-preXX-i386-derive-cpu-host-from-KVM_GET_SUPPORTED_CPUID .patch - fix subpage memory accesses - tweak kvm-supported.txt (see bnc#694883 and bnc#724906) ------------------------------------------------------------------- Thu Nov 24 14:13:32 UTC 2011 - brogers@suse.com - Include a few more useful post v0.15.1 upstream fixes - remove hpet driftfix patches - never accepted upstream - fixes for bnc#728664 and bnc#731086 ------------------------------------------------------------------- Tue Nov 22 01:37:35 CET 2011 - ro@suse.de - cut down ia64 patches to make them apply - remove ia64 from ExclusiveArch, needs more work ------------------------------------------------------------------- Sun Nov 6 02:45:55 UTC 2011 - brogers@suse.com - include a number of post v0.15.1 upstream fixes - load vhost-net module for improved virtio network performance ------------------------------------------------------------------- Mon Oct 24 02:58:49 UTC 2011 - brogers@suse.com - Update to qemu-kvm v0.15.1 - we already carry most of the included patches - see http://wiki.qemu.org/ChangeLog/0.15 for details ------------------------------------------------------------------- Wed Oct 19 15:51:46 UTC 2011 - brogers@suse.com - update to most recent ipxe upstream development sources - include some qemu v0.15.1 fixes (awaiting qemu-kvm release) - SDL termination issue - qed use after free - configure script improvement - kvm-supported.txt is now fairly accurate ------------------------------------------------------------------- Mon Oct 10 03:18:31 UTC 2011 - brogers@suse.com - Update seabios to v1.6.3 - fix curl based disk access - fix termination by signal with -no-shutdown option set - dont set e1000 capabilities list bit ------------------------------------------------------------------- Thu Sep 15 22:46:07 UTC 2011 - brogers@suse.com - take advantage of Transparent Huge Pages on host - include sgabios.bin - virtFS fixes (bnc#711250) ------------------------------------------------------------------- Sat Aug 13 13:41:48 UTC 2011 - brogers@novell.com - fix failures migrating or saving large memory vms when remaining host memory is insuffienct (bnc#705095) - fix for creating 1MB vm ------------------------------------------------------------------- Wed Aug 10 12:38:55 UTC 2011 - brogers@novell.com - update to v0.15.0 for details, see: http://wiki.qemu.org/ChangeLog/0.15 - update to latest seabios (ahci is enabled there now) - refreshed virtFS coroutine patches to latest available ------------------------------------------------------------------- Sun Jul 31 23:30:40 UTC 2011 - brogers@novell.com - update to v0.15.0 rc1 ------------------------------------------------------------------- Fri Jul 29 17:28:40 UTC 2011 - brogers@novell.com - update to v0.15.0 rc0 - update to latest ipxe and seabios upstream development sources - include initial coroutine support (trial basis) - include initial virtFS changes to support coroutines (trial basis) - build seabios with ahci support enabled ------------------------------------------------------------------- Thu Jul 14 19:53:32 UTC 2011 - brogers@novell.com - add a BuildRequires for xfsprogs-devel so trim/discard is enabled for raw images. ------------------------------------------------------------------- Thu Jul 14 14:18:51 CEST 2011 - agraf@suse.de - update s390 patches to fit with 0.15 ------------------------------------------------------------------- Tue Jul 12 19:48:15 UTC 2011 - brogers@novell.com - qemu-kvm tarball refreshed to latest upstream. - fixed s390 build, but private s390 patches still disabled. ------------------------------------------------------------------- Wed Jul 6 16:33:10 UTC 2011 - brogers@novell.com - update to latest post 0.14.1 upstream qemu-kvm development sources (git id: 525e3df). This fixes a failure with vhost-net usage. (bnc#704023) ------------------------------------------------------------------- Thu Jun 9 13:53:30 UTC 2011 - brogers@novell.com - update to latest post 0.14.1 upstream qemu-kvm development sources (see: http://wiki.qemu.org/ChangeLog for a description of most of the changes through 0.14.1). - update to latest post 0.6.2 seabios upstream developement sources - change from gpxe to ipxe projects for pxe roms (version 1.0.0+) - add braile support - enable linux AIO - hpet driftfix patches - pulse audio is now first in list - making it the default interface - added creation of user/group qemu/qemu for use by libvirt (and potentially others) to avoid running as root (bnc#694883) ------------------------------------------------------------------- Tue Jun 7 12:33:37 CEST 2011 - agraf@suse.de - fix ? operator in console output (bnc#698237) ------------------------------------------------------------------- Tue May 24 20:00:55 CEST 2011 - agraf@suse.de - update s390x zipl rom for fast bootup (bnc#695766) ------------------------------------------------------------------- Fri May 20 21:27:14 UTC 2011 - brogers@novell.com - correct fix for e1000 fails with solaris guest (bnc#626654) ------------------------------------------------------------------- Fri May 13 11:25:26 CEST 2011 - agraf@suse.de - apply mac patches on !x86 too, so we don't run into potential fuzz issues ------------------------------------------------------------------- Fri May 13 11:11:06 CEST 2011 - agraf@suse.de - fix potential endless loop in dictzip (bnc#693592) ------------------------------------------------------------------- Fri May 13 09:54:44 CEST 2011 - agraf@suse.de - make dzip big-endian safe (bnc#692217) ------------------------------------------------------------------- Fri May 6 17:57:23 UTC 2011 - brogers@novell.com - don't allow hot unplug for certain devices (bnc#690781) ------------------------------------------------------------------- Wed May 4 14:24:37 CEST 2011 - agraf@suse.de - automatically load kvm kernel module on s390x (bnc#691668) ------------------------------------------------------------------- Tue May 3 20:38:27 CEST 2011 - agraf@suse.de - update zipl rom for s390x to fix potential boot issues (bnc#691424) ------------------------------------------------------------------- Sun Apr 24 03:03:38 UTC 2011 - brogers@novell.com - enforce sector granularity in virtio-blk (bnc#689895) ------------------------------------------------------------------- Thu Apr 21 15:05:56 CEST 2011 - agraf@suse.de - fix RAM limit on s390x (bnc#689081) ------------------------------------------------------------------- Thu Apr 7 03:46:53 UTC 2011 - brogers@novell.com - e1000 fails with solaris guest (bnc#626654) - fix errors in support document (bnc#637558) - correct errors in kvm-supported.txt doc (bnc#637558) - fail if invalid drive parameters specified - fix segfault accessing closed block device - improve pcnet emulation ------------------------------------------------------------------- Thu Mar 31 14:26:17 CEST 2011 - agraf@suse.de - Fix byteswap issue in S390 virtio (bnc#684087) - Add logical_block_size parameter to virtio-blk on S390 (bnc#684105) ------------------------------------------------------------------- Tue Feb 15 03:20:30 UTC 2011 - brogers@novell.com - can not send certain characters through the -monitor interface (bnc#670961) - gpxe only handles one virtio network interface (bnc#671639) ------------------------------------------------------------------- Sat Feb 12 02:23:40 CET 2011 - agraf@suse.de - Add hotplug support for SUSE Studio on S390 (bnc#671274) ------------------------------------------------------------------- Fri Dec 3 09:44:31 CET 2010 - agraf@suse.de - [dictzip] fix images > 32bit (bnc#654944) ------------------------------------------------------------------- Mon Sep 27 14:46:04 UTC 2010 - brogers@novell.com - Revert writeback cache change until we can resolve the issues discovered in bnc#637297 ------------------------------------------------------------------- Thu Jul 29 05:56:40 UTC 2010 - brogers@novell.com - Update to stable release 0.12.5, which includes numerous bug fixes. This and other recent changes address: bnc#598298, bnc#621793, bnc#619991, bnc#603179 - Warn if default mac address is used - rtl8139 stops working after restore - Incompatibility with libvirt if disk caching specified in xml ------------------------------------------------------------------- Mon Jul 19 16:38:19 UTC 2010 - brogers@novell.com - qemu-kvm was mistakenly being built without libaio support, which results in less efficient disk i/o (bnc#598271) ------------------------------------------------------------------- Tue Jun 15 19:42:17 UTC 2010 - brogers@novell.com - Fix "hang" in bios seen with recent isolinux (bnc#603161) ------------------------------------------------------------------- Wed Jun 2 01:59:14 CEST 2010 - agraf@suse.de - Fix multiboot (bnc#610682) ------------------------------------------------------------------- Tue Jun 1 14:04:49 CEST 2010 - agraf@suse.de - Pull in some patches that are in the 0.12.5 stable queue. I only picked the ones that looked pretty serious (and affected us). ------------------------------------------------------------------- Tue Jun 1 13:51:06 CEST 2010 - agraf@suse.de - Pull in some block speedup patches from me (bnc#599095). This also changes the default for block devices back to writeback, which should significantly speed up default block assignments. ------------------------------------------------------------------- Thu May 13 16:38:22 UTC 2010 - brogers@novell.com - There are various issues in the multiwrite code paths for which upstream patches already exist, including a bad memory leak. This addresses bnc#603523. These patches are now included: kvm-qemu-pre0.12.4-fix-multiwrite-error-code.patch kvm-qemu-pre0.12.4-fix-multiwrite-error-handling.patch kvm-qemu-pre0.12.4-fix-multiwrite-memory-leak.patch kvm-qemu-pre0.12.4-free-iovec-array.patch ------------------------------------------------------------------- Mon May 10 03:48:51 UTC 2010 - brogers@novell.com - Windows virtio iso filename clarification (bnc#603900) - Document warning about using the default mac address (bnc#603179) - Clarify pci passthrough support statement ------------------------------------------------------------------- Tue Apr 27 18:21:46 UTC 2010 - brogers@novell.com - Fixed block io corruption bug where we weren't watching to not exceed IOV_MAX. (bnc#586118, bnc#599012) ------------------------------------------------------------------- Mon Apr 26 02:46:29 UTC 2010 - brogers@novell.com - Update windows virtio drivers to latest available (incl. Balloon) - Included Windows XP and 2003 install fix for isa-pc case as well (bnc#590683) - Add -boot option for -drive parm to the doc. (bnc#594742) - Improved formatting of kvm-supported.txt file ------------------------------------------------------------------- Tue Apr 20 19:50:32 CEST 2010 - agraf@suse.de - Update S390 zipl loader - now works without guest modifications ------------------------------------------------------------------- Sat Apr 10 22:36:32 UTC 2010 - brogers@novell.com - Proper fix for Windows XP and 2003 install problems (bnc#590683) - gpxe compiles more cleanly - report error if monitor change command fails ------------------------------------------------------------------- Wed Apr 7 14:45:06 CEST 2010 - agraf@suse.de - Pull in patches that are waiting for 0.12.4 to be released - Fixes overlapping rom regions (bnc#590425) - Give warning instead of segfault with -smp > max (bnc#581712) - Add S390 patches to make -nographic work properly and add bootloader code - Fix cmos patch to enable S390 building again ------------------------------------------------------------------- Fri Mar 26 21:15:44 UTC 2010 - brogers@novell.com - in no-kvm mode, enforce RAM limit of 4095 MB (bnc#581738) - fix floppy support using -global isa-fdc (bnc#591597) ------------------------------------------------------------------- Fri Mar 26 02:00:25 UTC 2010 - brogers@novell.com - Windows XP and 2003 install again when using -device w/ide (bnc#590683) - fix segfault when guest started with > 16 vcpus (bnc#581712) - balloon info in monitor is erratic/incorrect (bnc#580841) - removed --allow-unsupported-modules from modprobe (bnc#588214) - updated kvm-supported.txt ------------------------------------------------------------------- Mon Mar 15 23:55:18 UTC 2010 - brogers@novell.com - add file kvm-supported.txt to document supported features ------------------------------------------------------------------- Wed Mar 10 19:32:48 UTC 2010 - brogers@novell.com - Update to 0.12.3, which includes these changes among others: - segfault due to buffer overrun in usb-serial - kvm: Fix eflags corruption in kvm mode - don't dereference NULL after failed strdup - better error handling in storage code - virtio-net: fix network stall under load - Fix hang in bios with multiple vcpus (bnc#586260) - Cherry picked a few other useful upstream post 0.12.3 fixes ------------------------------------------------------------------- Fri Mar 5 13:40:14 UTC 2010 - coolo@novell.com - do not put 11 chars in a direntry with only length of 8 (I hope upstream comes up with something better soon) ------------------------------------------------------------------- Mon Mar 1 14:01:39 CET 2010 - agraf@suse.de - Add Studio specific patches back again - VNC password file - VNC exit after n disconnects - SLIRP disable outgoing connections ------------------------------------------------------------------- Mon Mar 1 11:44:39 CET 2010 - agraf@suse.de - Hotfix to get hotplug with virtio work again (bnc#583696) ------------------------------------------------------------------- Wed Feb 24 17:08:05 CET 2010 - agraf@suse.de - Get qemu-img-kvm back (really important for Studio!) ------------------------------------------------------------------- Fri Feb 19 16:46:09 UTC 2010 - brogers@novell.com - Fix network booting (bnc#580947) - Fix virtio network shutdown under load - Fix buffer overrun - Fix access after end of array - Cleanup issues with net device integration - Fix remaining extraneous stderr output on startup ------------------------------------------------------------------- Tue Feb 16 13:19:40 CET 2010 - agraf@suse.de - Implement long file names for tar (bnc#580100) ------------------------------------------------------------------- Wed Jan 20 20:56:05 UTC 2010 - brogers@novell.com - Update to 0.12.2, including these changes among others: - Update SeaBIOS to 0.5.1 - vnc: Fix artifacts in hextile decoding - device assignment: default requires IOMMU - pc: add machine type for 0.12 - Fix CPU topology initialization - vmware_vga: Check cursor dimensions to avoid buffer overflow - Remove deprecated windows drivers - ability to build all objects from source now - build debug package ------------------------------------------------------------------- Mon Jan 18 18:28:23 CET 2010 - agraf@suse.de - Make dzip not consume endless amounts of ram (bnc#569337) ------------------------------------------------------------------- Wed Jan 13 15:58:10 CET 2010 - agraf@suse.de - Make block-tar work for images > 8 GB (bnc#565600) ------------------------------------------------------------------- Tue Jan 5 17:17:41 UTC 2010 - brogers@novell.com - update to 0.12.1.2 (FATE#306513) Changes from qemu-kvm-0.11.x include: - merge qemu 0.12.1 - many changes, including: - s390 support - live migration: support migration with non shared storage - live migration: make save/restore data driven (VMState) - monitor: introduce machine-protocol (QMP) - qdev: convert many devices, support reading config from file - pci: infrastructure to support 64-bit busses - net: introduce -netdev to support point-to-point networking - net: add support for GSO and checksum offload - tons of bug fixes throughout the code base - many kvm-specific bug fixes ------------------------------------------------------------------- Tue Dec 8 00:37:37 CET 2009 - agraf@suse.de - enable S390 target which is now upstream (FATE#306513) ------------------------------------------------------------------- Mon Dec 7 16:44:43 CET 2009 - agraf@suse.de - update to 0.12.0-rc0 (FATE#306513) - detailed changes following on -rc1 ------------------------------------------------------------------- Fri Dec 4 10:50:56 CET 2009 - brogers@suse.de - added latest windows virtio drivers to package previous version of drivers is deprecated ------------------------------------------------------------------- Thu Nov 12 17:38:26 CET 2009 - brogers@suse.de - Fix package dependencies (bnc#554850) ------------------------------------------------------------------- Sat Nov 7 01:02:50 CET 2009 - brogers@suse.de - update package description ------------------------------------------------------------------- Mon Oct 19 10:19:38 CEST 2009 - agraf@suse.de - fix incorrect search in /usr/share/qemu (#534850) ------------------------------------------------------------------- Mon Sep 28 15:51:58 UTC 2009 - brogers@novell.com - update to 0.11.0 Changes from the qemu-kvm-0.10 series: - merge qemu 0.11.0 - qdev device model - qemu-io - i386: multiboot support for -kernel - gdbstub: vCont support - i386: control over boot menu - i386: pc-0.10 compatibility machine type - qcow2: use cache=writethrough by default - i386: MCE emulation - i386: host cpuid support - slirp: host network config - virtio: MSI-x support - pci: allow devices to specify bus address - migration: allow down time based threshold - virtio-net: filtering support - http block device support - i386: expose numa topology to guests - native preadv/pwritev support - kvm: guest debugging support - vnc: support for acls and gssapi - monitor: allow multiple monitors - device assignment: MSI-X support (Sheng Yang) - device assignment: SR/IOV support (Sheng Yang) - irqfd support (Gregory Haskins) - drop libkvm, use some of the upstream kvm support (Glauber Costa) - device assignment: option ROM support (Alex Williamson) - x2apic support (Gleb Natapov) - kvm/msi integration (Michael S. Tsirkin) - hpet/kvm integration (Beth Kon) - mce/kvm ingration (Huang Ying) - refresh patch series ------------------------------------------------------------------- Thu Sep 24 23:52:34 UTC 2009 - brogers@novell.com - fix qemu-kvm crash due to buffer overrun (bnc#537387) ------------------------------------------------------------------- Wed Sep 9 11:07:56 CEST 2009 - agraf@suse.de - Update to 0.11.0-rc2 - no changelog provided upstream, will hopefully follow for 0.11.0 - Include Mac OS X patches again - Include dictzip patches (Studio related) - Split KMP out, we'll take the kernel module as of now - Version update in accordance with fate#306665 ------------------------------------------------------------------- Thu Aug 6 16:23:11 CEST 2009 - agraf@suse.de - Fix IA64 build ------------------------------------------------------------------- Wed Jul 29 18:07:14 CEST 2009 - agraf@suse.de - update kvm-78 -> qemu-kvm-0.10.5 - 'info chardev' monitor command - automatic port allocation for vnc and similar - improved cdrom media change handling - scsi improvements - e1000 vlan offload - fix interrupt loss when injecting an nmi - SPT optimizations - x86 emulator improvements - fix amd->intel migration - enable virtio zero-copy (Mark McLoughlin) - uuid support - hpet support - '-drive serial=...' option - improved tsc handling (Marcelo Tosatti) - guest S3 sleep (Gleb Natapov) - '-no-kvm-pit-reinjection' option to improve timing on RHEL 3 era guests (Marcelo Tosatti) - fix xen-on-kvm - enable ac97 audio by default - add virtio-console device - fix rtc time drift on Windows (-rtc-td-hack option) - vnc improvements - fix kvmclock on hosts with unstable tsc (Gerd Hoffman) - fix cygwin on Windows x64 - enable nested paging again ------------------------------------------------------------------- Mon May 25 12:01:17 CEST 2009 - agraf@suse.de - make SLES9 kernel work with -kernel (#458258) - add patches to get Xen running as guest ------------------------------------------------------------------- Sat Feb 21 15:20:27 CET 2009 - agruen@suse.de - Remove the dependency on kernel-source-rt and kernel-syms-rt: those -rt packages will not ship in their current versions. ------------------------------------------------------------------- Mon Jan 26 14:02:25 CET 2009 - agraf@suse.de - add Windows 7 and Vista fix for userspace networking ------------------------------------------------------------------- Fri Jan 16 11:35:54 CET 2009 - agraf@suse.de - disable SLERT build for < 11.1 - backport virtio performance tweaks (bnc#466743) - remove MSR debug message that clutters the log - include kvm_stat tool to ease debugging ------------------------------------------------------------------- Tue Jan 13 17:32:03 CET 2009 - dgollub@suse.de - prepared for multi kernel variant build - use kernel variant specific kernel source directory instead of the symlinked kernel source directory - added kernel-syms-rt to build requires to build SLERT KMPs ------------------------------------------------------------------- Wed Jan 7 18:10:31 CET 2009 - agraf@suse.de - update driver CD - apply security bugfixes: - slirp buffer overflow (CVE 2007-5729) - VNC DoS (bnc#464142, CVE-2008-2382) - VNC password guessing (bnc#464141, CVE-2008-5714) ------------------------------------------------------------------- Tue Dec 16 17:25:22 CET 2008 - agraf@suse.de - upstream backports: - fix NMI injection issues (#458642) - MMU speedups and fixes (#448114) - fix bug in memory slot assignment - makes our kmp work with current svn qemu - fix buffer overflow in cirrus buffer (#448551) - AltGr on VNC fix (#450148) - add release to sysfs version (#450571) - do not emulate CPUs if opening /dev/kvm failed (#458910) ------------------------------------------------------------------- Mon Dec 1 17:09:24 CET 2008 - agraf@suse.de - update OSX patch to work for kvm-78 ------------------------------------------------------------------- Fri Nov 21 08:45:40 MST 2008 - brogers@novell.com - revert disk caching mode back to writeback for now. ------------------------------------------------------------------- Sat Nov 8 01:12:57 CET 2008 - agraf@suse.de - fix external buildservice compilation ------------------------------------------------------------------- Fri Nov 7 13:30:51 CET 2008 - agraf@suse.de - fix compilation for < 11.1 ------------------------------------------------------------------- Thu Nov 6 13:35:11 MST 2008 - brogers@novell.com - make qemu-ifup script executable ------------------------------------------------------------------- Thu Nov 6 08:35:38 MST 2008 - brogers@novell.com - allow autoloading to handle our KMP unsupported status - add a default qemu-ifup script for bridged configuration ------------------------------------------------------------------- Wed Nov 5 17:06:37 CET 2008 - agraf@suse.de - update to KVM 78 - fix nmi watchdog emulation (Jan Kiszka) - merge qemu-svn - new live migration implementation - usb improvements - migration fixes - read UUID from qemu (Gleb Natapov) - increase max cpu count to 255 for ia64 (Xiantao Zhang) - fix some AMD->Intel live migration failures - increase rmap preallocation (Marcelo Tosatti) - fixes oops on mmu intensive smp workloads - update e820 table for ept real mode identity map page (Sheng Yang) - add autoloading of KVM modules - do not block other VMMs when KVM is loaded ------------------------------------------------------------------- Thu Oct 23 16:05:42 MDT 2008 - brogers@novell.com - misc cleanup and again address s390 build ------------------------------------------------------------------- Wed Oct 22 22:42:07 MDT 2008 - brogers@novell.com - fix build failures in check-gcc-output ------------------------------------------------------------------- Fri Oct 17 15:55:32 CEST 2008 - agraf@suse.de - update to KVM 77 - improved usb support - vnc improvements - pass uuid to guest - scsi/virtio improvements - improve debugging support - improve >4GB memory support (Alex Williamson) - fix ia64 boot with acpi enabled (Xiantao Zhang) - fix ia64 with >= 3GB RAM (Xiantao Zhang) - fix live migration - kernel support for device assignment (Allen Kay, Amit Shah, Weidong Han, Ben-Ami Yassour) - improved NMI support (Jan Kiszka) - add driver kit to /usr/share/qemu-kvm - fix issues with our new 2.6.27 kernels - set default RAM size to 384MB ------------------------------------------------------------------- Wed Oct 1 18:23:19 CEST 2008 - rw@suse.de - reflect move to 64k page size on ia64 (bnc#429881) - fix build for ia64 ------------------------------------------------------------------- Mon Sep 22 11:57:09 CEST 2008 - lnussel@suse.de - optionally build with vde support - require gnutls to enable vnc tls support ------------------------------------------------------------------- Tue Sep 16 14:39:19 MDT 2008 - brogers@novell.com - Fix build for ia64 and first attempt for s390 - bnc#353836: s390 source now GPLv2 ------------------------------------------------------------------- Tue Sep 16 15:35:54 CEST 2008 - agraf@suse.de - update to KVM 75 - ballooning (Anthony Liguori) - requires 2.6.27+ host to work correctly - fixes extboot failures after reset - fixes rare reboot failures with Windows - fixes ACPI error messages in Windows event log - fixes hibernate/resume with guest smp - fix random segfaults with npt (Joerg Roedel) - enable building on 10.3 again ------------------------------------------------------------------- Thu Sep 4 13:15:16 CEST 2008 - agraf@suse.de - update to KVM 74 - fix shadow ptes corruption on i386 hosts running smp guests - improved usb support - usb auto connect/disconnect - add IA64 support - spec file cleanup ------------------------------------------------------------------- Fri Aug 22 10:19:07 CEST 2008 - agraf@suse.de - fix the PulseAudio disabling for older distributions ------------------------------------------------------------------- Thu Aug 21 15:28:23 CEST 2008 - agraf@suse.de - update to KVM 73 - improve qcow2 performance with cache=off - ide fixes - external module compatibility with 2.6.27 hosts - virtio-net speedup (Mark McLoughlin) - support Windows hibernation on non-FlexPriority hosts - full swapping support (Andrea Arcangeli) - needs 2.6.27 hosts - paravirt guest: query tsc frequency from host (Glauber Costa) - fix debug register corruption on Intel hosts (Marcelo Tosatti) - fix -no-kvm-irqchip ------------------------------------------------------------------- Wed Aug 20 13:56:23 CEST 2008 - agraf@suse.de - fix the PulseAudio disabling for older distributions ------------------------------------------------------------------- Tue Aug 19 12:16:03 MDT 2008 - brogers@novell.com - change kernel module install location from weak-updates to updates as per email received from Peter Bowen (pzb@novell.com). ------------------------------------------------------------------- Tue Aug 19 17:14:19 CEST 2008 - agraf@suse.de Temporary fixes for NPT breakage: - Disabled nested paging by default - When nested paging is enabled, make it slow but reliable ------------------------------------------------------------------- Wed Jul 30 18:32:42 CEST 2008 - agraf@suse.de - update to KVM 72 - fixes suspend/resume of multiple nics - adds Virtual Distributed Ethernet (vde) support - avoid losing the iothread on random signals - add 'info kvm' monitor command (Anthony Liguori) - avoid tpr patching when the stack is not valid (Marcelo Tosatti) - fixes some variant of Windows 2003 SMP - fix extboot stomping on reserved interrupt vectors (H. Peter Anvin) - MMU improvements - fix interrupt reinjection in real mode (Jan Kiszka) - x86 hardware task switching fixes (Marcelo Tosatti) - fix interrupts being delayed by instruction emulation - improves Vista stability - ignore no-op DEBUGCTL msr writes (Alexander Graf) - fixes Netware - fix running of 32-bit code in x86_64 SLES10SP2 (bnc#403189) - make /usr/bin/qemu-kvm runnable as non kvm group member - take out the vmi fix again, as that's fixed upstream ------------------------------------------------------------------- Tue Jul 22 08:31:32 CEST 2008 - agraf@suse.de - disable PulseAudio for older distributions, so the package still builds on < 11.0 ------------------------------------------------------------------- Tue Jul 15 18:45:25 CEST 2008 - agraf@suse.de - update to KVM 71 - virtio fixes - adds pulseaudio driver - fix lost interrupt when changing a device irq - fix host msr corruption when host preempt is enabled - fix kvmclock (Gerd Hoffmann, used in xenner) - allow Linux 2.6.9 guests to boot - fix booting guests compiled with gcc 4.3 - fix ioapic hang on heavy load (Mark McLoughlin) - fix suspend/resume on AMD (Joerg Roedel) - enable PulseAudio support ------------------------------------------------------------------- Wed Jul 9 10:57:09 CEST 2008 - agraf@suse.de - add support for VMI-enabled kernels ------------------------------------------------------------------- Wed Jun 25 20:16:15 CEST 2008 - agraf@suse.de - update to KVM 70 - improve virtio net performance (Anthony Liguori) - fix corrupted breakpoints (Jerone Young) - fix debugging (Jan Kiszka) - add mtrr support - merge qemu-svn - remove dependency on gcc 3 - vnc client segfault fix - fix vnc problems on resize - enable tpr optimization for smp - should drastically speed up Windows XP SMP guests - fix false flooding when a pte points to a page table - improves 2.4 pae guests with CONFIG_HIGHPTE - enable NMI support on Intel (Sheng Yang) - fix hypercall return value on AMD - fixes running CONFIG_KVM_GUEST guests - allow VMware Server to take over vmx when unloading the module (Eli Collins) - fix crash on resume from suspend to ram (Andrea Arcangeli) - emulator improvements - Snow Leopard compatibility fixes - reenable CPU emulation ------------------------------------------------------------------- Thu Jun 5 12:30:56 CEST 2008 - agraf@suse.de - update to KVM 69 - update to latest Mac patches ------------------------------------------------------------------- Mon May 26 20:49:12 CEST 2008 - agraf@suse.de - enable ALSA ------------------------------------------------------------------- Fri Mar 28 07:50:55 CET 2008 - coolo@suse.de - adding ncurses-devel to buildrequires ------------------------------------------------------------------- Fri Mar 7 15:53:29 CET 2008 - bk@suse.de - Update to kvm-63, adds curses interface. It still uses gcc for qemu's CPU emulation which is broken with gcc4 -> disable it temporarily. ------------------------------------------------------------------- Mon Feb 25 14:58:17 CET 2008 - alex@suse.de - Fix cpuid patch ------------------------------------------------------------------- Thu Feb 21 16:09:29 CET 2008 - bk@suse.de - Add fixes from upstream and drop cpuidfake patch, fixes bnc#360671 ------------------------------------------------------------------- Fri Feb 15 19:06:58 CET 2008 - bk@suse.de - Update to kvm-61, adds paravirtualized clock and dozens of fixes - Fix cpuid asm or 64-bit guest support and fix core duo support - Build the BIOS images from source and add ACPI entries for -M mac - Build qemu with -O0 to work around real-mode emulation problems ------------------------------------------------------------------- Fri Feb 15 11:55:14 CET 2008 - agraf@suse.de - Include fix to make gfxboot work on Intel ------------------------------------------------------------------- Wed Feb 13 15:35:05 CET 2008 - anschneider@suse.de - Add upstream patch to fix VMs that no longer boot ------------------------------------------------------------------- Thu Jan 24 15:16:19 CET 2008 - bk@suse.de - Update to kvm-60, add C2D cpuid level 4, use bios.mac for -M mac ------------------------------------------------------------------- Fri Jan 11 19:08:56 CET 2008 - bk@suse.de - Update to kvm-59, now works with gfxboot of recent openSUSE CDs! ------------------------------------------------------------------- Tue Aug 28 13:46:25 CEST 2007 - bk@suse.de - based unpon version in opensue buildservice by dbahi/kraxel