Re: Xen security update [was: Re: [Pkg-xen-devel] Xen packaging in Debian - Progress update]

[Hans van Kranenburg]

On 01/10/2018 08:54 AM, Wolodja Wentland wrote:
> Hans van Kranenburg  writes:
> 
>> == Security update for Stretch ==
>>
>> On IRC I got some questions about the already earlier released XSA
>> patches, which still aren't in Stretch.
> 
> It would be a lovely if a security upload that includes patches for the
> following XSAs could be prepared, given that many people will reboot
> their hypervisors these days:
> 
> - https://xenbits.xen.org/xsa/advisory-248.html
> - https://xenbits.xen.org/xsa/advisory-249.html
> - https://xenbits.xen.org/xsa/advisory-250.html
> - https://xenbits.xen.org/xsa/advisory-251.html
> 
> These are all single patches that apply cleanly to 4.8 (with some fuzz)
> and will have been deployed in locally built packages by many.

Yes, that's what that whole section was about. See the links in my
previous message.

Got reply from security team: "Thanks, I'll get back to you end of week."

Hans

Xen security update [was: Re: [Pkg-xen-devel] Xen packaging in Debian - Progress update]

[Wolodja Wentland]

Hans van Kranenburg  writes:

> == Security update for Stretch ==
>
> On IRC I got some questions about the already earlier released XSA
> patches, which still aren't in Stretch.

It would be a lovely if a security upload that includes patches for the
following XSAs could be prepared, given that many people will reboot
their hypervisors these days:

- https://xenbits.xen.org/xsa/advisory-248.html
- https://xenbits.xen.org/xsa/advisory-249.html
- https://xenbits.xen.org/xsa/advisory-250.html
- https://xenbits.xen.org/xsa/advisory-251.html

These are all single patches that apply cleanly to 4.8 (with some fuzz)
and will have been deployed in locally built packages by many.

Thanks for all your efforts!
-- 
Wolodja 

4096R/CAF14EFC
081C B7CD FF04 2BA9 94EA  36B2 8B7F 7D30 CAF1 4EFC