[ubuntu/raring-proposed] xen 4.2.0-1ubuntu3 (Accepted)

Andy Whitcroft apw at ubuntu.com
Fri Nov 30 11:15:48 UTC 2012 

xen (4.2.0-1ubuntu3) raring; urgency=low

  * tools-ocaml-fix-build: refresh and reenable (and fix the description
    of) this patch.  Without it the ocam native libraries (*.cmxa)
    build in /build local paths rather than appropriatly versioned
    library references.

xen (4.2.0-1ubuntu2) raring; urgency=low

  * Drop replaces and conflicts for xen3 packages (they are no longer
    in the upgrade path) from debian/control:
    - libxenstore3.0: Conflict and replaces libxen3.
    - libxen-dev: Conflict and replaces libxen3-dev.
    - xenstore-utils: Conflict and replaces libxen3
    - xen-utils-4.1: Conflict and replaces libxen3, python-xen-3.3,
      and xen-utils-3.3
  * Use dpkg-buildflags and strip the gcc prefix for getting LDFLAGS.
    This will again use the Ubuntu specific LDFLAGS (using some
    hardening options). Older releases would always pass those options
    in the environment but that changed.
  * Ressurrect qemu-dm for now (upstream qemu would not support
    migration, yet). Forward-port some patches from the old Debian
    package which still included qemu-dm:
    - qemu-prefix (modify LDFLAGS to point to lib dir for qemu-dm)
    - qemu-disable-blktap (this is not present in upstream)
    - ubuntu-qemu-disable-qemu-upstream (breaks build and also should
      be provided by qemu/kvm package)
  * Build depend on kvm-ipxe (instead of ipxe) as it is smaller and fix
    up hvmloader build. kvm-ipxe contains a subset of the rom files from
    which the Xen build only uses two to be embedded in the hvmloader.
  * XSA-20: Prevent overflow in calculations, leading to DoS vulnerability
    - CVE-2012-4535
  * XSA-22: Prevent incorrect updates of m2p mappings
    - CVE-2012-4537
  * XSA-23: check toplevel pagetables are present before unhooking them
    - CVE-2012-4538
  * XSA-24: Prevent infinite loop in compat code
    - CVE-2012-4539
  * XSA-25: limit maximum size of kernel/ramdisk
    - CVE-2012-4544

xen (4.2.0-1ubuntu1) raring; urgency=low

  * Merge from Debian Experimental, Remaining changes:
    - debian/control:
      - Build depends on ipxe-qemu.
      - libxenstore3.0: Conflict and replaces libxen3.
      - libxen-dev: Conflict and replaces libxen3-dev.
      - xenstore-utils: Conflict and replaces libxen3
      - xen-utils-4.1: Conflict and replaces libxen3, python-xen-3.3,
        and xen-utils-4.1.
      - Make sure the LDFLAGS value passed is suitable for use by ld
        rather than gcc.
    - disable debian/patches/config-etherboot.diff.
    - debian/patches/silence-gcc-warnings.patch: Silence gcc warnings.

xen (4.2.0-1) experimental; urgency=low

  * New upstream release.

xen (4.2.0~rc3-1) experimental; urgency=low

  * New upstream snapshot.

xen (4.2.0~rc2-1) experimental; urgency=low

  * New upstream snapshot.
  * Build-depend against libglib2.0-dev and libyajl-dev.
  * Disable seabios build for now.
  * Remove support for Lenny and earlier.
  * Support build-arch and build-indep make targets.

Date: Thu, 29 Nov 2012 21:49:00 +0000
Changed-By: Andy Whitcroft <apw at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/raring/+source/xen/4.2.0-1ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 29 Nov 2012 21:49:00 +0000
Source: xen
Binary: xen-docs-4.2 libxen-4.2 libxenstore3.0 libxen-dev xenstore-utils libxen-ocaml libxen-ocaml-dev xen-utils-common xen-utils-4.2 xen-hypervisor-4.2-amd64 xen-system-amd64 xen-hypervisor-4.2-i386 xen-system-i386
Architecture: source
Version: 4.2.0-1ubuntu3
Distribution: raring
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Andy Whitcroft <apw at ubuntu.com>
Description: 
 libxen-4.2 - Public libs for Xen
 libxen-dev - Public headers and libs for Xen
 libxen-ocaml - OCaml libraries for controlling Xen
 libxen-ocaml-dev - OCaml libraries for controlling Xen (devel package)
 libxenstore3.0 - Xenstore communications library for Xen
 xen-docs-4.2 - Documentation for Xen
 xen-hypervisor-4.2-amd64 - Xen Hypervisor on AMD64
 xen-hypervisor-4.2-i386 - Xen Hypervisor on i386
 xen-system-amd64 - Xen System on AMD64 (meta-package)
 xen-system-i386 - Xen System on i386 (meta-package)
 xen-utils-4.2 - XEN administrative tools
 xen-utils-common - Xen administrative tools - common files
 xenstore-utils - Xenstore utilities for Xen
Changes: 
 xen (4.2.0-1ubuntu3) raring; urgency=low
 .
   * tools-ocaml-fix-build: refresh and reenable (and fix the description
     of) this patch.  Without it the ocam native libraries (*.cmxa)
     build in /build local paths rather than appropriatly versioned
     library references.
 .
 xen (4.2.0-1ubuntu2) raring; urgency=low
 .
   * Drop replaces and conflicts for xen3 packages (they are no longer
     in the upgrade path) from debian/control:
     - libxenstore3.0: Conflict and replaces libxen3.
     - libxen-dev: Conflict and replaces libxen3-dev.
     - xenstore-utils: Conflict and replaces libxen3
     - xen-utils-4.1: Conflict and replaces libxen3, python-xen-3.3,
       and xen-utils-3.3
   * Use dpkg-buildflags and strip the gcc prefix for getting LDFLAGS.
     This will again use the Ubuntu specific LDFLAGS (using some
     hardening options). Older releases would always pass those options
     in the environment but that changed.
   * Ressurrect qemu-dm for now (upstream qemu would not support
     migration, yet). Forward-port some patches from the old Debian
     package which still included qemu-dm:
     - qemu-prefix (modify LDFLAGS to point to lib dir for qemu-dm)
     - qemu-disable-blktap (this is not present in upstream)
     - ubuntu-qemu-disable-qemu-upstream (breaks build and also should
       be provided by qemu/kvm package)
   * Build depend on kvm-ipxe (instead of ipxe) as it is smaller and fix
     up hvmloader build. kvm-ipxe contains a subset of the rom files from
     which the Xen build only uses two to be embedded in the hvmloader.
   * XSA-20: Prevent overflow in calculations, leading to DoS vulnerability
     - CVE-2012-4535
   * XSA-22: Prevent incorrect updates of m2p mappings
     - CVE-2012-4537
   * XSA-23: check toplevel pagetables are present before unhooking them
     - CVE-2012-4538
   * XSA-24: Prevent infinite loop in compat code
     - CVE-2012-4539
   * XSA-25: limit maximum size of kernel/ramdisk
     - CVE-2012-4544
 .
 xen (4.2.0-1ubuntu1) raring; urgency=low
 .
   * Merge from Debian Experimental, Remaining changes:
     - debian/control:
       - Build depends on ipxe-qemu.
       - libxenstore3.0: Conflict and replaces libxen3.
       - libxen-dev: Conflict and replaces libxen3-dev.
       - xenstore-utils: Conflict and replaces libxen3
       - xen-utils-4.1: Conflict and replaces libxen3, python-xen-3.3,
         and xen-utils-4.1.
       - Make sure the LDFLAGS value passed is suitable for use by ld
         rather than gcc.
     - disable debian/patches/config-etherboot.diff.
     - debian/patches/silence-gcc-warnings.patch: Silence gcc warnings.
 .
 xen (4.2.0-1) experimental; urgency=low
 .
   * New upstream release.
 .
 xen (4.2.0~rc3-1) experimental; urgency=low
 .
   * New upstream snapshot.
 .
 xen (4.2.0~rc2-1) experimental; urgency=low
 .
   * New upstream snapshot.
   * Build-depend against libglib2.0-dev and libyajl-dev.
   * Disable seabios build for now.
   * Remove support for Lenny and earlier.
   * Support build-arch and build-indep make targets.
Checksums-Sha1: 
 fb1a26f9c49a365b398cb68f28f6f8e69f08074b 3161 xen_4.2.0-1ubuntu3.dsc
 de48277205328c7161ea7f1274fb54924ff6e7f3 3807019 xen_4.2.0.orig-qemu.tar.gz
 0229722399694a3d79cba687817c2f92ee2af3c2 5842158 xen_4.2.0.orig.tar.gz
 1f4cbfa957ceb21216521351ae5c3336f70aa358 65454 xen_4.2.0-1ubuntu3.debian.tar.gz
Checksums-Sha256: 
 ec19883fb195ea378591b66c3438d246a390b14d7d0af9c408dc430a6e74be18 3161 xen_4.2.0-1ubuntu3.dsc
 057f87b4a8ad5d373b58488e5fea3c2ce7f440ba37bd066d472ec3a7df037bc7 3807019 xen_4.2.0.orig-qemu.tar.gz
 fd3a3c212296f67b2b1e87e2b2464ef6dd2e23ed9bb921784ca340c3339f3685 5842158 xen_4.2.0.orig.tar.gz
 153188c50be3db96633fd994621022b1ed5861578d5a848fe86a4e28ac82a487 65454 xen_4.2.0-1ubuntu3.debian.tar.gz
Files: 
 a4cb20f273c1cb497fd059103567e08f 3161 kernel optional xen_4.2.0-1ubuntu3.dsc
 43a6956a9d0437c8723d480318946090 3807019 kernel optional xen_4.2.0.orig-qemu.tar.gz
 0f4f9fdb4983b0c265e0635e7a45e3f9 5842158 kernel optional xen_4.2.0.orig.tar.gz
 134548bd25bc8f9250102d0b1154254e 65454 kernel optional xen_4.2.0-1ubuntu3.debian.tar.gz
Original-Maintainer: Debian Xen Team <pkg-xen-devel at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQIcBAEBCgAGBQJQuI6uAAoJEE/75Oku/epy+/0QAKuTxSoXAohOOEym8Bb0LAtT
4zHzlE4FNyQnMHQb7qdJEk5O9CWXw3j/0WqN3CZMCqc8nwg47n/PqGzCLdo2XCKl
7oPeWSi9/HQx8irGl83xNR0vc+QzqU9bFO4YONYchazvsKiTuuhLlMrSrbVf/s8d
P6t7PjKAQ3AZTQj+TkbQZTzi388PNeMj5y90SmOZgWwkVef2KTaVfru4Z5oz/LnY
3qzvr4GtmgE0suwbe1EHWnXHFbUax6dDxtNPDXnvyMtbsZbG2Y4XVBz19f70qYIV
9n35hxMP+LXTudoaVFOU7sPllNtVC/IkqlYy/TZd+9ePpnLrr1ZlQiSldlEvYubD
bgmb3ftwcS5oldJbty63VODt7gDL1n/bnS5ZxIXXHewantziixYsEH2CwMtzxD8P
rv9vD3la61c7sAQP/NGBnpD8kUlu2BeC+uIGNkpFLjQf4Yo8yRITg6abE4BsORzK
svL2Z+LY6GuWZKBZVKwKDqNg++Ls8MpdQo2XFI/MNMUcos5GKVyHOo/3MIt40Et9
/EO5kamVR2KKOKlC52oyx6gsc3uKtw5GJPYAdRzTNuo1eLMOJK/Ef46ADRqCRKI6
a+JzgLJc9mqf0/YHxvBHo3bksTOtdNV7/29ntkZqfJRVfcbls9ywTP8bn9Roq99c
IzcDh/z1rFDt8AlvZ5gu
=1rRL
-----END PGP SIGNATURE-----

More information about the Raring-changes mailing list