X-Git-Url: https://git.proxmox.com/?a=blobdiff_plain;f=debian%2Fchangelog;h=0e8c300ab81bda9586c0e5cd46f6835f47053697;hb=e514cee9c6977c11b3f63d7a7a4b826270d7718a;hp=fdbfa080dd0484a3ca37116e636ebdec972feed3;hpb=a6ae4569f11b93ad1f84e57c979887e25e46af23;p=pve-qemu-kvm.git diff --git a/debian/changelog b/debian/changelog index fdbfa08..0e8c300 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,194 @@ +pve-qemu-kvm (2.6.1-3) unstable; urgency=medium + + * fix CVE-2016-7116: various 9pfs fixe + + * fix CVE-2016-7155: scsi: check page count while initialising + descriptor rings + + * fix CVE-2016-7156: scsi: pvscsi: avoid infinite loop while building SG list + + * fix CVE-2016-7157: scsi: mptconfig: fix an assert expression + + -- Proxmox Support Team Wed, 07 Sep 2016 12:14:02 +0200 + +pve-qemu-kvm (2.6.1-2) unstable; urgency=medium + + * virtio related live migration fixes + + * vnc server surface refresh fix + + * iscsi and network fixes + + -- Proxmox Support Team Thu, 25 Aug 2016 10:35:52 +0200 + +pve-qemu-kvm (2.6.1-1) unstable; urgency=medium + + * update to qemu 2.6.1 + + * Fix CVE-2016-6490: virtio: check vring descriptor buffer length + + * Fix CVE-2016-6833: net: vmxnet3: check for device_active before write + + * Fix CVE-2016-6834: net: check fragment length during fragmentation + + * Fix CVE-2016-6835: net: vmxnet: check IP header length + + * Fix CVE-2016-6836: net: vmxnet: initialise local tx descriptor + + * Fix CVE-2016-6888: net: vmxnet: use g_new for pkt initialisation + + * enable cache=unsafe for vma extract_content and qmp_savevm_start + + * rbd : disable cache_writethtrough_until_flush with cache=unsafe + + -- Proxmox Support Team Mon, 22 Aug 2016 11:55:38 +0200 + +pve-qemu-kvm (2.6-1) unstable; urgency=medium + + * update to qemu 2.6.0 + + -- Proxmox Support Team Fri, 01 Jul 2016 10:00:31 +0200 + +pve-qemu-kvm (2.5-19) unstable; urgency=medium + + * fix CVE-2016-5105: scsi: megasas: initialise local configuration data + buffer + + * fix CVE-2016-5106: scsi: megasas: use appropriate property buffer size + + * fix fix CVE-2016-5107: scsi: megasas: check 'read_queue_head' index value + + * fix fix CVE-2016-5126: block/iscsi: avoid potential overflow of + acb->task->cdb + + * fix CVE-2016-4454: vmsvga: move fifo sanity checks to vmsvga_fifo_length + + * fix CVE-2016-4453: vmsvga: don't process more than 1024 fifo commands at + + -- Proxmox Support Team Tue, 31 May 2016 18:04:31 +0200 + +pve-qemu-kvm (2.5-18) unstable; urgency=medium + + * Fix CVE-2016-4952 + + -- Proxmox Support Team Tue, 24 May 2016 17:15:00 +0200 + +pve-qemu-kvm (2.5-17) unstable; urgency=medium + + * add fix for freezing win7 with VGA #991 + + -- Proxmox Support Team Tue, 17 May 2016 12:51:10 +0200 + +pve-qemu-kvm (2.5-16) unstable; urgency=medium + + * update to qemu 2.5.1.1 + + -- Proxmox Support Team Tue, 10 May 2016 09:53:30 +0200 + +pve-qemu-kvm (2.5-15) unstable; urgency=medium + + * Fix #932: passing BDRV_O_PROTOCOL breaks qcow2 on gluster + + -- Proxmox Support Team Fri, 29 Apr 2016 08:55:53 +0200 + +pve-qemu-kvm (2.5-14) unstable; urgency=medium + + * Fix CVE-2016-4037 + + -- Proxmox Support Team Tue, 26 Apr 2016 15:43:48 +0200 + +pve-qemu-kvm (2.5-13) unstable; urgency=medium + + * fix 'i386: leakage of stack memory to guest in kvmvapic.c' + + -- Proxmox Support Team Thu, 14 Apr 2016 17:06:52 +0200 + +pve-qemu-kvm (2.5-12) unstable; urgency=medium + + * Fix #934: assume raw for /dev paths in vma extract + + -- Proxmox Support Team Wed, 13 Apr 2016 08:47:13 +0200 + +pve-qemu-kvm (2.5-11) unstable; urgency=medium + + * update to qemu 2.5.1 + + * target-i386: do not read/write MSR_TSC_AUX from KVM if CPUID + + -- Proxmox Support Team Fri, 01 Apr 2016 10:09:54 +0200 + +pve-qemu-kvm (2.5-10) unstable; urgency=medium + + * add the zeroinit block driver filter + + -- Proxmox Support Team Mon, 21 Mar 2016 09:47:53 +0100 + +pve-qemu-kvm (2.5-9) unstable; urgency=medium + + * Fix CVE-2016-2841, CVE-2016-2857, CVE-2016-2858 + + -- Proxmox Support Team Mon, 07 Mar 2016 17:08:23 +0100 + +pve-qemu-kvm (2.5-8) unstable; urgency=medium + + * Fix CVE-2016-2538 + + * vma: better driver guessing for bdrv_open + + -- Proxmox Support Team Wed, 24 Feb 2016 16:28:37 +0100 + +pve-qemu-kvm (2.5-7) unstable; urgency=medium + + * add fw_cfg-unbreak-migration-compatibility-for-2.4 patch + + -- Proxmox Support Team Fri, 19 Feb 2016 09:22:16 +0100 + +pve-qemu-kvm (2.5-6) unstable; urgency=medium + + * Fix CVE-2016-2392 and CVE-2016-2391 + + -- Proxmox Support Team Thu, 18 Feb 2016 09:44:37 +0100 + +pve-qemu-kvm (2.5-5) unstable; urgency=medium + + * Fix #885: vma-writer: don't bail out on zero length files + + -- Proxmox Support Team Mon, 08 Feb 2016 11:37:52 +0100 + +pve-qemu-kvm (2.5-4) unstable; urgency=medium + + * Fix CVE-2016-2197 and CVE-2016-2198 + + -- Proxmox Support Team Mon, 01 Feb 2016 17:16:09 +0100 + +pve-qemu-kvm (2.5-3) unstable; urgency=medium + + * Fix CVE-2016-1981 + + -- Proxmox Support Team Fri, 22 Jan 2016 09:09:27 +0100 + +pve-qemu-kvm (2.5-2) unstable; urgency=medium + + * recompile for test environment + + -- Proxmox Support Team Wed, 20 Jan 2016 08:37:49 +0100 + +pve-qemu-kvm (2.5-1) unstable; urgency=medium + + * update qemu to 2.5.0 + + * removed upstream CVE fixes + + -- Proxmox Support Team Fri, 08 Jan 2016 12:43:24 +0100 + +pve-qemu-kvm (2.4-21) unstable; urgency=medium + + * add correct fix for CVE-2015-8619 + + * close #849: iproute is a transitional package for iproute2 + + -- Proxmox Support Team Mon, 11 Jan 2016 15:23:23 +0100 + pve-qemu-kvm (2.4-20) unstable; urgency=medium * Removing wrong CVE-2015-8619