]> git.proxmox.com Git - pve-qemu-kvm.git/blobdiff - debian/changelog
projects / pve-qemu-kvm.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
disable fix for CVE-2016-3712 (do not compile)
[pve-qemu-kvm.git] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index 791ce833d3b48dcbdd229b4ed544d69b2a3d218d..5f42069b2beb66a0bc783ba3350401161f5c5a7f 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,445 @@
+pve-qemu-kvm (2.2-26) unstable; urgency=low
+
+  * fix CVE-2016-4037
+   ehci: apply limit to iTD/sidt descriptors
+
+   * fix CVE-2016-4453
+   vmsvga: don't process more than 1024 fifo commands at once
+
+   * fix CVE-2016-4454
+   vmsvga: move fifo sanity checks to vmsvga_fifo_length
+   vmsvga: add more fifo checks
+   vmsvga: shadow fifo registers
+
+   * fix CVE-2016-4952
+   scsi: pvscsi: check command descriptor ring buffer size
+
+   * fix CVE-2016-5105
+   scsi: megasas: initialise local configuration data buffer
+
+   * fix CVE-2016-5106
+   scsi: megasas: use appropriate property buffer size
+
+   * fix CVE-2016-5107
+   scsi: megasas: check 'read_queue_head' index value
+
+   * fix CVE-2016-5126
+   block/iscsi: avoid potential overflow of acb->task->cdb
+
+   * CVE-2016-6490
+   virtio: check vring descriptor buffer length
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 05 Aug 2016 11:50:29 +0200
+
+pve-qemu-kvm (2.2-25) unstable; urgency=low
+
+  * Fix CVE-2016-2841, CVE-2016-2857, CVE-2016-2858
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 07 Mar 2016 17:14:14 +0100
+
+pve-qemu-kvm (2.2-24) unstable; urgency=low
+
+  * Fix CVE-2015-8817 and CVE-2015-8818
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 02 Mar 2016 16:42:16 +0100
+
+pve-qemu-kvm (2.2-23) unstable; urgency=low
+
+  * Fix CVE-2016-2538
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 24 Feb 2016 16:36:59 +0100
+
+pve-qemu-kvm (2.2-22) unstable; urgency=low
+
+  * Fix CVE-2016-2391 and CVE-2016-2392
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 18 Feb 2016 09:52:22 +0100
+
+pve-qemu-kvm (2.2-21) unstable; urgency=low
+
+  * fix CVE-2016-1568: ide: ahci: reset ncq object to unused on error
+
+  * fix CVE-2015-3209: pcnet: force the buffer access to be in bounds during tx
+
+  * fix CVE-2015-7504: net: pcnet: add check to validate receive data size
+
+  * fix CVE-2015-7512: pcnet: fix rx buffer overflow
+
+  * fix CVE-2015-7295
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 09 Feb 2016 17:34:00 +0100
+
+pve-qemu-kvm (2.2-20) unstable; urgency=low
+
+  * Fix CVE-2016-1981
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 22 Jan 2016 09:25:17 +0100
+
+pve-qemu-kvm (2.2-19) unstable; urgency=low
+
+  * Fix CVE-2016-1922: i386: avoid null pointer dereference
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 18 Jan 2016 11:06:14 +0100
+
+pve-qemu-kvm (2.2-18) unstable; urgency=low
+
+  * fix CVE-2016-1714 - fw_cfg oob r/w access
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 13 Jan 2016 10:58:09 +0100
+
+pve-qemu-kvm (2.2-17) unstable; urgency=low
+
+  * hmp: fix sendkey out of bounds write (CVE-2015-8619)
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 11 Jan 2016 15:41:23 +0100
+
+pve-qemu-kvm (2.2-16) unstable; urgency=low
+
+  * Removing wrong CVE-2015-8619
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 08 Jan 2016 12:46:34 +0100
+
+pve-qemu-kvm (2.2-15) unstable; urgency=low
+
+  * CVE-2015-8613 scsi: initialise info object with appropriate size
+
+  * CVE-2015-8619 hmp: avoid redundant null termination of buffer
+
+  * CVE-2015-8666 acpi: fix buffer overrun on migration
+
+  * CVE-2015-8743 net: ne2000: fix bounds check in ioport operations
+
+  * CVE-2015-8744 net/vmxnet3: Refine l2 header validation
+
+  * CVE-2015-8745 vmxnet3: Support reading IMR registers on bar0
+
+  * fixes for CVEs 2015-7549, 2015-8858 and for vmxnet3
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 07 Jan 2016 12:17:13 +0100
+
+pve-qemu-kvm (2.2-14) unstable; urgency=low
+
+  * fix CVE-2015-8504
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 09 Dec 2015 12:37:47 +0100
+
+pve-qemu-kvm (2.2-13) unstable; urgency=low
+
+  * fix CVE-2015-1779
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 30 Oct 2015 09:50:10 +0100
+
+pve-qemu-kvm (2.2-12) unstable; urgency=low
+
+  * added ne2000 patch
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 22 Oct 2015 12:24:22 +0200
+
+pve-qemu-kvm (2.2-11) unstable; urgency=low
+
+  * fix CVE-2015-5154
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 28 Jul 2015 07:08:39 +0200
+
+pve-qemu-kvm (2.2-10) unstable; urgency=low
+
+  * fix VENOM qemu security flaw (CVE-2015-3456)
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 14 May 2015 09:37:00 +0200
+
+pve-qemu-kvm (2.2-9) unstable; urgency=low
+
+  * fix assert while resizing or hot plugging virtio scsi disks
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 31 Mar 2015 06:33:07 +0200
+
+pve-qemu-kvm (2.2-8) unstable; urgency=low
+
+  * update to v2.2.1
+  
+  * fix ballooning with memory hotplug
+  
+  * remove fix-mc146818rtc-wrong-subsection-name.patch (now upstream)
+  
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 11 Mar 2015 07:02:14 +0100
+
+pve-qemu-kvm (2.2-7) unstable; urgency=low
+
+  * fix mc146818rtc wrong subsection name to avoid
+    vmstate_subsection_load() fail.
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 24 Feb 2015 17:38:31 +0100
+
+pve-qemu-kvm (2.2-6) unstable; urgency=low
+
+  * qmp: fix backup-cancel
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 29 Dec 2014 07:21:24 +0100
+
+pve-qemu-kvm (2.2-5) unstable; urgency=low
+
+  * add new qmp command: get_link_status
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 11 Dec 2014 10:42:20 +0100
+
+pve-qemu-kvm (2.2-4) unstable; urgency=low
+
+  * update to qemu v2.2.0
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 10 Dec 2014 06:18:34 +0100
+
+pve-qemu-kvm (2.2-3) unstable; urgency=low
+
+  * update to qemu v2.2.0-rc5
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 05 Dec 2014 13:27:35 +0100
+
+pve-qemu-kvm (2.2-2) unstable; urgency=low
+
+  * update to qemu v2.2.0-rc3+ (commit 4cae4d5acaea23f3def84c8dc67ef5106323e5cb)
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 28 Nov 2014 11:50:25 +0100
+
+pve-qemu-kvm (2.2-1) unstable; urgency=low
+
+  * update to qemu v2.2.0-rc2
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 20 Nov 2014 07:56:27 +0100
+
+pve-qemu-kvm (2.1-10) unstable; urgency=low
+
+  * enable support for write_zeroes and discard for images on xfs filesystem
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 13 Oct 2014 10:19:44 +0200
+
+pve-qemu-kvm (2.1-9) unstable; urgency=low
+
+  * update to v2.1.2
+  
+  * remove temporary patches (now upstream)
+    - virtio-net_drop_assert_on_vm_stop.patch
+    - revert_virtio_dont_call_device_on_not_vm_running.patch
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 26 Sep 2014 11:25:57 +0200
+
+pve-qemu-kvm (2.1-8) unstable; urgency=low
+
+  * apply patches/hotfix for virtio-net migration problem in 2.1.1
+    - virtio-net_drop_assert_on_vm_stop.patch
+    - revert_virtio_dont_call_device_on_not_vm_running.patch
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 16 Sep 2014 12:54:48 +0200
+
+pve-qemu-kvm (2.1-7) unstable; urgency=low
+
+  * update to v2.1.1
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 11 Sep 2014 09:27:38 +0200
+
+pve-qemu-kvm (2.1-6) unstable; urgency=low
+
+  *  gluster: allow to specify a backup server
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 26 Aug 2014 12:55:23 +0200
+
+pve-qemu-kvm (2.1-5) unstable; urgency=low
+
+  * glusterfs: do not log to stdout when daemonized
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 22 Aug 2014 13:28:24 +0200
+
+pve-qemu-kvm (2.1-4) unstable; urgency=low
+
+  * depend on new libiscsi 1.12.0
+  
+  * depend on new glusterfs 3.5.2
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 21 Aug 2014 08:18:43 +0200
+
+pve-qemu-kvm (2.1-3) unstable; urgency=low
+
+  * snapshot: fix reference counting bug
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 07 Aug 2014 13:31:30 +0200
+
+pve-qemu-kvm (2.1-2) unstable; urgency=low
+
+  * update to v2.1.0
+
+ -- Proxmox Support Team <support@proxmox.com>  Sat, 02 Aug 2014 15:00:58 +0200
+
+pve-qemu-kvm (2.1-1) unstable; urgency=low
+
+  * update to v2.1.0-rc2
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 16 Jul 2014 11:55:13 +0200
+
+pve-qemu-kvm (2.0-2) unstable; urgency=low
+
+  * update to latest qemu (commit 2a2c4830c0068d70443f3dddc4cc668f0c601b5c)
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 12 Jun 2014 10:20:10 +0200
+
+pve-qemu-kvm (2.0-1) unstable; urgency=low
+
+  * update to qemu 2.0
+  
+  * remove virtio-net-fix-guest-triggerable-buffer-overrun-CVE-2014-0150.patch 
+    This is now included in upstream.
+
+  * depend on libiscsi2 (>= 1.11.0)
+  
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 05 May 2014 06:57:34 +0200
+
+pve-qemu-kvm (1.7-8) unstable; urgency=low
+
+  * fix guest-triggerable buffer overrun in virtio-net (CVE-2014-0150)
+  
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 22 Apr 2014 06:47:02 +0200
+
+pve-qemu-kvm (1.7-7) unstable; urgency=low
+
+  * vma: allows the creation of vma files without data streams
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 14 Apr 2014 11:13:36 +0200
+
+pve-qemu-kvm (1.7-6) unstable; urgency=low
+
+  * backup: remove async queue (avoid segmentation fault)
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 27 Mar 2014 13:06:55 +0100
+
+pve-qemu-kvm (1.7-5) unstable; urgency=low
+
+  * update to 1.7.1
+  
+  * backup: do not report errors to the VM when backup fails.
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 26 Mar 2014 06:37:55 +0100
+
+pve-qemu-kvm (1.7-4) unstable; urgency=low
+
+  * disable efi enabled pxe boot roms (they do not work)
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 29 Jan 2014 12:58:46 +0100
+
+pve-qemu-kvm (1.7-3) unstable; urgency=low
+
+  * vma: add 'vma config' command to easily extract VM configuration
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 04 Dec 2013 10:39:36 +0100
+
+pve-qemu-kvm (1.7-2) unstable; urgency=low
+
+  * depend on latest spice server libs
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 03 Dec 2013 13:40:56 +0100
+
+pve-qemu-kvm (1.7-1) unstable; urgency=low
+
+  * remove qemu-img-convert-skipcreate-option.patch (now upstream)
+  
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 27 Nov 2013 10:55:35 +0100
+
+pve-qemu-kvm (1.4-17) unstable; urgency=low
+
+  * enable glusterfs backend
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 13 Aug 2013 06:48:32 +0200
+
+pve-qemu-kvm (1.4-16) unstable; urgency=low
+
+  * add patch to use pce certs for spice by default
+  
+  * disable spice-socket.patch
+  
+  * Allow to query spice ticket
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 23 Jul 2013 10:02:14 +0200
+
+pve-qemu-kvm (1.4-15) unstable; urgency=low
+
+  * add usbredir support to spice
+
+ -- Proxmox Support Team <support@proxmox.com>  Fri, 19 Jul 2013 07:41:20 +0200
+
+pve-qemu-kvm (1.4-14) unstable; urgency=low
+
+  * add experimental code to support spice 
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 25 Jun 2013 06:41:52 +0200
+
+pve-qemu-kvm (1.4-13) unstable; urgency=low
+
+  * update to qemu 1.4.2
+  
+  * remove rbd-add-an-asynchronous-flush.patch (upstream now)
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 03 Jun 2013 06:28:32 +0200
+
+pve-qemu-kvm (1.4-12) unstable; urgency=low
+
+  * vma create: only store basename of config file.
+  patch: 0009-vma-only-store-the-basename-of-a-configuration-file.patch
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 08 May 2013 10:07:50 +0200
+
+pve-qemu-kvm (1.4-11) unstable; urgency=low
+
+  * rbd: add an asynchronous flush
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 07 May 2013 12:14:57 +0200
+
+pve-qemu-kvm (1.4-10) unstable; urgency=low
+
+  * bump version to 1.4-10
+
+  * this is based on qemu 1.4.1
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 16 Apr 2013 10:39:58 +0200
+
+pve-qemu-kvm (1.4-9) unstable; urgency=low
+
+  * vma restore: tolerate a size difference up to 4M
+
+ -- Proxmox Support Team <support@proxmox.com>  Tue, 26 Mar 2013 06:33:43 +0100
+
+pve-qemu-kvm (1.4-8) unstable; urgency=low
+
+  * vma: add 'vma verify' command to verify vma archives
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 11 Mar 2013 11:10:34 +0100
+
+pve-qemu-kvm (1.4-7) unstable; urgency=low
+
+  * update seabios to 1.7.2.1 (fix freebsd boot)
+
+ -- Proxmox Support Team <support@proxmox.com>  Sat, 09 Mar 2013 09:02:48 +0100
+
+pve-qemu-kvm (1.4-6) unstable; urgency=low
+
+  * set default cpu model to kvm64 (to avoid problems with windows activation)
+
+ -- Proxmox Support Team <support@proxmox.com>  Mon, 25 Feb 2013 06:55:23 +0100
+
+pve-qemu-kvm (1.4-5) unstable; urgency=low
+
+  * update backup patches to v5
+
+ -- Proxmox Support Team <support@proxmox.com>  Thu, 21 Feb 2013 12:30:57 +0100
+
+pve-qemu-kvm (1.4-4) unstable; urgency=low
+
+  * update backup patches
+
+ -- Proxmox Support Team <support@proxmox.com>  Wed, 20 Feb 2013 10:43:04 +0100
+
+pve-qemu-kvm (1.4-3) unstable; urgency=low
+
+  * update to qemu 1.4.0 final
+
+ -- Proxmox Support Team <support@proxmox.com>  Sat, 16 Feb 2013 09:24:06 +0100
+
 pve-qemu-kvm (1.4-2) unstable; urgency=low
 
   * update to latest 1.4.0rc2
old QEMU for PVE