[Pkg-xen-devel] Xen package security updates for jessie 4.4, XSA-213, XSA-214
Moritz Mühlenhoff
jmm at inutil.org
Sun May 7 10:07:19 UTC 2017
On Fri, May 05, 2017 at 04:33:03PM +0100, Ian Jackson wrote:
> (switching to my personal account since Citrix and security at d.o
> spamfilters are fighting.)
>
> Ian Jackson writes ("Re: Xen package security updates for jessie 4.4, XSA-213, XSA-214"):
> > Moritz Muehlenhoff writes ("Re: Xen package security updates for jessie 4.4, XSA-213, XSA-214"):
> > > Let's also include fixes for https://xenbits.xen.org/xsa/advisory-212.html
> > > and https://xenbits.xen.org/xsa/advisory-200.html, for these even official
> > > 4.4 backports are available.
> >
> > OK.
>
> I also managed to fix XSA-202 and XSA-204.
>
> > This is true of all the patches. The diff was a git diff of a
> > dgit-compatible tree (ie, a patches-applied tree). I can give you a
> > diff without the upstream changes if you want.
>
> Here's the revised diff. This is of the prerelease package (with
> prerelease version number) I actually built and tested. I will fix up
> the version number before pushing.
>
> You can also see my git branch here if you like:
> https://xenbits.xen.org/gitweb/?p=people/iwj/xen.git;a=shortlog;h=refs/heads/wip.jessie-security
> https://xenbits.xen.org/git-http/people/iwj/xen.git#jessie-security
Thanks! Please upload to security-master
Cheers,
Moritz
More information about the Pkg-xen-devel
mailing list