Hi everyone, I am pleased to announce that the QEMU v2.10.1 stable release is now available:
You can grab the tarball from our download page here: https://www.qemu.org/download/#source v2.10.1 is now tagged in the official qemu.git repository, and the stable-2.10 branch has been updated accordingly: https://git.qemu.org/?p=qemu.git;a=shortlog;h=refs/heads/stable-2.10 This update contains security fixes addressing guest-induced crashing of host QEMU process (CVE-2017-13672, CVE-2017-13673) and possible code injection into host QEMU process via a crafted multiboot ELF kernel when specified directly via QEMU command-line option (CVE-2017-14167). There are also the normal range of general fixes. Please see the changelog for additional details and update accordingly. Thank you to everyone involved! CHANGELOG: 7851197b81: Update version for 2.10.1 release (Michael Roth) 547435f550: migration: disable auto-converge during bulk block migration (Peter Lieven) 17cd46fbdf: s390x/cpumodel: remove ais from z14 default model-> also for 2.10.1 (Christian Borntraeger) 6a903482b1: Revert "ACPI: don't call acpi_pcihp_device_plug_cb on xen" (Anthony PERARD) 8edf4c6adc: hw/acpi: Move acpi_set_pci_info to pcihp (Anthony PERARD) 2c3a8cc581: hw/acpi: Limit hotplug to root bus on legacy mode (Anthony PERARD) 0691b70a2a: nbd-client: avoid read_reply_co entry if send failed (Stefan Hajnoczi) 4d824886c8: accel/tcg/cputlb: avoid recursive BQL (fixes #1706296) (Alex Bennée) 780fb4ce48: block/qcow2-bitmap: fix use of uninitialized pointer (Vladimir Sementsov-Ogievskiy) 7496699ba6: block/throttle-groups.c: allocate RestartData on the heap (Manos Pitsidianakis) 33a599667a: osdep: Fix ROUND_UP(64-bit, 32-bit) (Eric Blake) a432f419ab: s390x/ais: for 2.10 stable: disable ais facility (Christian Borntraeger) a83858fdb5: 9pfs: check the size of transport buffer before marshaling (Jan Dakinevich) d13a0bde83: 9pfs: fix name_to_path assertion in v9fs_complete_rename() (Jan Dakinevich) e90997dc8f: 9pfs: fix readdir() for 9p2000.u (Jan Dakinevich) 7e1288cd0c: console: fix dpy_gfx_replace_surface assert (Gerd Hoffmann) 83b23fe55c: ide: ahci: unparent children buses before freeing their memory (Igor Mammedov) e96002e0d1: hw/ide/microdrive: Mark the dscm1xxxx device with user_creatable = false (Thomas Huth) cc7dd3ad3f: hw/arm/aspeed_soc: Mark devices as user_creatable = false (Thomas Huth) de4ad17a8e: hw/arm/digic: Mark device with user_creatable = false (Thomas Huth) 8a9d7f3063: s390x/ipl: The s390-ipl device is not hot-pluggable (Thomas Huth) d3f05848fc: watchdog/wdt_diag288: Mark diag288 watchdog as non-hotpluggable (Thomas Huth) fca5f37fe9: multiboot: validate multiboot header address values (Prasad J Pandit) 2965be1f00: vga: stop passing pointers to vga_draw_line* functions (Gerd Hoffmann) d6f7f3b0cf: vga: fix display update region calculation (split screen) (Gerd Hoffmann) 2a2eab6660: vhost-user-bridge: fix resume regression (since 2.9) (Marc-André Lureau) 48f65ce837: libvhost-user: support resuming vq->last_avail_idx based on used_idx (Marc-André Lureau) b95fbe6f12: scsi-bus: correct responses for INQUIRY and REQUEST SENSE (Hannes Reinecke) b8cd978919: mps2-an511: Fix wiring of UART overflow interrupt lines (Peter Maydell) b24304ca13: vhost: Release memory references on cleanup (Alex Williamson) c6841b112e: qcow2: move qcow2_store_persistent_dirty_bitmaps() before cache flushing (Pavel Butsykin) 65a24b5c44: hw/arm/allwinner-a10: Mark the allwinner-a10 device with user_creatable = false (Thomas Huth) 85cdc23e75: arm_gicv3_kvm: Fix compile warning (Pranith Kumar) 168ff32c5d: virtfs: error out gracefully when mandatory suboptions are missing (Greg Kurz) 728bfa3273: target/arm: Fix aa64 ldp register writeback (Richard Henderson) e1b4750f06: s390-ccw: Fix alignment for CCW1 (Farhan Ali) 53d421dd9c: slirp: fix clearing ifq_so from pending packets (Samuel Thibault)