date:20180104

Re: [CentOS-virt] [CVE-2017-5715] qemu-kvm-ev-2.9.0-16.el7_4.13.1 is now available for testing

2018-01-04 Thread Sandro Bonazzola

2018-01-04 21:18 GMT+01:00 Sandro Bonazzola :

> Hi, qemu-kvm-ev-2.9.0-16.el7_4.13.1
>  is now available
> for testing.
> I'm testing it right now in oVirt CI, if nothing shows up, I'll tag it for
> release in a few hours.
>
> Here's the changelog:
>
> * Thu Jan 04 2018 Sandro Bonazzola  -
> ev-2.9.0-16.el7_4.13.1 - Removing RH branding from package name * Thu Dec
> 14 2017 Miroslav Rezanina  - rhev-2.9.0-16.el7_4.13
> - Fix CVE-2017-5715 * Thu Nov 16 2017 Miroslav Rezanina <
> mreza...@redhat.com> - rhev-2.9.0-16.el7_4.12 -
> kvm-util-async-use-atomic_mb_set-in-qemu_bh_cancel.patch [bz#1513362] -
> Resolves: bz#1513362 (QEMU's AIO subsystem gets stuck inhibiting all I/O
> operations on virtio-blk-pci devices [rhel-7.4.z])
>
>

Test passed, tagged for release. Will be available on mirrors.centos.org in
the next sign / publish cycle.


> --
>
> SANDRO BONAZZOLA
>
> ASSOCIATE MANAGER, SOFTWARE ENGINEERING, EMEA ENG VIRTUALIZATION R&D
>
> Red Hat EMEA 
> 
> TRIED. TESTED. TRUSTED. 
>
>


-- 

SANDRO BONAZZOLA

ASSOCIATE MANAGER, SOFTWARE ENGINEERING, EMEA ENG VIRTUALIZATION R&D

Red Hat EMEA 

TRIED. TESTED. TRUSTED. 
___
CentOS-virt mailing list
CentOS-virt@centos.org
https://lists.centos.org/mailman/listinfo/centos-virt

[CentOS-virt] [CVE-2017-5715] qemu-kvm-ev-2.9.0-16.el7_4.13.1 is now available for testing

2018-01-04 Thread Sandro Bonazzola

Hi, qemu-kvm-ev-2.9.0-16.el7_4.13.1
 is now available for
testing.
I'm testing it right now in oVirt CI, if nothing shows up, I'll tag it for
release in a few hours.

Here's the changelog:

* Thu Jan 04 2018 Sandro Bonazzola  -
ev-2.9.0-16.el7_4.13.1 - Removing RH branding from package name * Thu Dec
14 2017 Miroslav Rezanina  - rhev-2.9.0-16.el7_4.13 -
Fix CVE-2017-5715 * Thu Nov 16 2017 Miroslav Rezanina 
- rhev-2.9.0-16.el7_4.12 -
kvm-util-async-use-atomic_mb_set-in-qemu_bh_cancel.patch [bz#1513362] -
Resolves: bz#1513362 (QEMU's AIO subsystem gets stuck inhibiting all I/O
operations on virtio-blk-pci devices [rhel-7.4.z])

-- 

SANDRO BONAZZOLA

ASSOCIATE MANAGER, SOFTWARE ENGINEERING, EMEA ENG VIRTUALIZATION R&D

Red Hat EMEA 

TRIED. TESTED. TRUSTED. 
___
CentOS-virt mailing list
CentOS-virt@centos.org
https://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS-virt] CentOS-virt - Kernel Side-Channel Attacks

2018-01-04 Thread Sarah Newman

On 01/04/2018 10:49 AM, Akemi Yagi wrote:
> On Thu, Jan 4, 2018 at 9:51 AM,  wrote:
> 
>> Please patch the CentOS-virt Kernel to fix the
>> Kernel Side-Channel Attacks vulnerabilities.
>>
>> The latest CentOS-virt kernel was released in November, as seen below.
>>
>> kernel-4.9.63-29.el7.x86_64.rpm 2017-11-21 13:30
>>
>> https://access.redhat.com/security/vulnerabilities/speculativeexecution
>> http://mirror.centos.org/centos/7/virt/x86_64/xen/
>>
> 
> As far as I can see, the patches for 
> KAISER (Kernel Address
>  Isolation to have Side-channels Efficiently Removed) will appear in
> kernel 4.9.75. Looks like it will be released soon upstream (kernel.org).
> 

To my best knowledge KAISER doesn't matter for Xen Dom0's given they run in PV 
mode, and KAISER isn't enabled for PV guests.
___
CentOS-virt mailing list
CentOS-virt@centos.org
https://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS-virt] CentOS-virt - Kernel Side-Channel Attacks

2018-01-04 Thread Akemi Yagi

On Thu, Jan 4, 2018 at 9:51 AM,  wrote:

> Please patch the CentOS-virt Kernel to fix the
> Kernel Side-Channel Attacks vulnerabilities.
>
> The latest CentOS-virt kernel was released in November, as seen below.
>
> kernel-4.9.63-29.el7.x86_64.rpm 2017-11-21 13:30
>
> https://access.redhat.com/security/vulnerabilities/speculativeexecution
> http://mirror.centos.org/centos/7/virt/x86_64/xen/
>

As far as I can see, the patches for 
KAISER (Kernel Address
 Isolation to have Side-channels Efficiently Removed) will appear in
kernel 4.9.75. Looks like it will be released soon upstream (kernel.org).

Akemi
___
CentOS-virt mailing list
CentOS-virt@centos.org
https://lists.centos.org/mailman/listinfo/centos-virt

[CentOS-virt] CentOS-virt - Kernel Side-Channel Attacks

2018-01-04 Thread rikske

Please patch the CentOS-virt Kernel to fix the
Kernel Side-Channel Attacks vulnerabilities.

The latest CentOS-virt kernel was released in November, as seen below.

kernel-4.9.63-29.el7.x86_64.rpm 2017-11-21 13:30

https://access.redhat.com/security/vulnerabilities/speculativeexecution
http://mirror.centos.org/centos/7/virt/x86_64/xen/

___
CentOS-virt mailing list
CentOS-virt@centos.org
https://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS-virt] [CVE-2017-5715] qemu-kvm-ev-2.9.0-16.el7_4.13.1 is now available for testing

[CentOS-virt] [CVE-2017-5715] qemu-kvm-ev-2.9.0-16.el7_4.13.1 is now available for testing

Re: [CentOS-virt] CentOS-virt - Kernel Side-Channel Attacks

Re: [CentOS-virt] CentOS-virt - Kernel Side-Channel Attacks

[CentOS-virt] CentOS-virt - Kernel Side-Channel Attacks

5 matches

Site Navigation

Mail list logo

Footer information