Module Name: src
Committed By: snj
Date: Fri Jan 8 21:26:40 UTC 2016
Modified Files:
src/doc [netbsd-6]: CHANGES-6.2
Log Message:
1358
To generate a diff of this commit:
cvs rdiff -u -r1.1.2.236 -r1.1.2.237 src/doc/CHANGES-6.2
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/doc/CHANGES-6.2
diff -u src/doc/CHANGES-6.2:1.1.2.236 src/doc/CHANGES-6.2:1.1.2.237
--- src/doc/CHANGES-6.2:1.1.2.236 Wed Nov 18 06:52:21 2015
+++ src/doc/CHANGES-6.2 Fri Jan 8 21:26:40 2016
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-6.2,v 1.1.2.236 2015/11/18 06:52:21 msaitoh Exp $
+# $NetBSD: CHANGES-6.2,v 1.1.2.237 2016/01/08 21:26:40 snj Exp $
A complete list of changes from the 6.1 release until the 6.2 release:
@@ -12737,3 +12737,19 @@ lib/libc/net/getaddrinfo.c patch
getnetbyaddr and getnetbyname.
[christos, ticket #1340]
+sys/arch/xen/include/xen-public/io/ring.h 1.3 via patch
+sys/arch/xen/xen/pciback.c 1.10 via patch
+sys/arch/xen/xen/xbdback_xenbus.c 1.62 via patch
+sys/arch/xen/xen/xennetback_xenbus.c 1.54 via patch
+
+ Apply patch from xsa155: make sure that the backend won't read
+ parts of the request again (possibly because of compiler
+ optimisations), by using copies and barrier.
+ From XSA155:
+ The compiler can emit optimizations in the PV backend drivers
+ which can lead to double fetch vulnerabilities. Specifically
+ the shared memory between the frontend and backend can be fetched
+ twice (during which time the frontend can alter the contents)
+ possibly leading to arbitrary code execution in backend.
+ [bouyer, ticket #1358]
+
