* Updating to latest upstream stable release (LP: #1180397).
- Security patches included which replace existing changes:
* CVE-2012-5634 / XSA-33, CVE-2013-0151 / XSA-34, CVE-2013-0152 / XSA-35, CVE-2013-0153 / XSA-36, CVE-2013-0215 / XSA-38, CVE-2012-6075 / XSA-41, CVE-2013-1917 / XSA-44, CVE-2013-1919 / XSA-46, CVE-2013-1920 / XSA-47
- Additional security related changes, not included before:
* CVE-2013-0154 / XSA-37: Hypervisor crash due to incorrect ASSERT (debug build only)
* CVE-2013-1922 / XSA-48: qemu-nbd format-guessing due to missing format specification
- Bug fixes
* ACPI APEI/ERST finally working on production systems
* Bug fixes for other low level system state handling
* Bug fixes and improvements to the libxl tool stack
* Bug fixes to nested virtualization
- Dropping the following patches previously added as they are included
in the upstream stable release:
* 0008-vmx-Simplify-cr0-update-handling-by-deferring-cr4-ch.patch
* 0009-VMX-disable-SMEP-feature-when-guest-is-in-non-paging.patch
* 0010-VMX-Always-disable-SMEP-when-guest-is-in-non-paging-.patch
-- Stefan Bader <email address hidden> Tue, 06 Aug 2013 13:26:05 +0100
This bug was fixed in the package xen - 4.2.2-0ubuntu0. 13.04.1
--------------- 0ubuntu0. 13.04.1) raring-proposed; urgency=low
xen (4.2.2-
* Updating to latest upstream stable release (LP: #1180397).
CVE-2013- 0152 / XSA-35, CVE-2013-0153 / XSA-36,
CVE-2013- 0215 / XSA-38, CVE-2012-6075 / XSA-41,
CVE-2013- 1917 / XSA-44, CVE-2013-1919 / XSA-46,
CVE-2013- 1920 / XSA-47
(debug build only)
format specification Simplify- cr0-update- handling- by-deferring- cr4-ch. patch disable- SMEP-feature- when-guest- is-in-non- paging. patch Always- disable- SMEP-when- guest-is- in-non- paging- .patch
- Security patches included which replace existing changes:
* CVE-2012-5634 / XSA-33, CVE-2013-0151 / XSA-34,
- Additional security related changes, not included before:
* CVE-2013-0154 / XSA-37: Hypervisor crash due to incorrect ASSERT
* CVE-2013-1922 / XSA-48: qemu-nbd format-guessing due to missing
- Bug fixes
* ACPI APEI/ERST finally working on production systems
* Bug fixes for other low level system state handling
* Bug fixes and improvements to the libxl tool stack
* Bug fixes to nested virtualization
- Dropping the following patches previously added as they are included
in the upstream stable release:
* 0008-vmx-
* 0009-VMX-
* 0010-VMX-
-- Stefan Bader <email address hidden> Tue, 06 Aug 2013 13:26:05 +0100