head 1.2; access; symbols pkgsrc-2015Q4:1.1.0.4 pkgsrc-2015Q4-base:1.1 pkgsrc-2015Q3:1.1.0.2; locks; strict; comment @# @; 1.2 date 2016.01.08.13.24.29; author bouyer; state dead; branches; next 1.1; commitid dF0w51B9H3ZR98Qy; 1.1 date 2015.10.29.20.40.53; author bouyer; state Exp; branches 1.1.2.1 1.1.4.1; next ; commitid ggSawe8Fa058S2Hy; 1.1.2.1 date 2015.10.29.20.40.53; author bsiegert; state dead; branches; next 1.1.2.2; commitid 7532M62EP3rPUOHy; 1.1.2.2 date 2015.11.04.21.22.27; author bsiegert; state Exp; branches; next ; commitid 7532M62EP3rPUOHy; 1.1.4.1 date 2016.01.11.22.12.33; author bsiegert; state dead; branches; next ; commitid KbJ6DapSMpov0zQy; desc @@ 1.2 log @Update xenkernel45 and xentools45 to 4.5.2. Changes since 4.5.1 includes security fixes (most of which were already in our local patches) and bug fixes. The complete list of changes is there: http://www.xenproject.org/downloads/xen-archives/xen-45-series/xen-452.html @ text @$NetBSD: patch-CVE-2015-7969,v 1.1 2015/10/29 20:40:53 bouyer Exp $ Patch for CVE-2015-7869 aka XSA-149 + XSA-151, from http://xenbits.xenproject.org/xsa/xsa149.patch http://xenbits.xenproject.org/xsa/xsa151.patch --- xen/common/domain.c.orig +++ xen/common/domain.c @@@@ -841,6 +841,7 @@@@ static void complete_domain_destroy(stru xsm_free_security_domain(d); free_cpumask_var(d->domain_dirty_cpumask); + xfree(d->vcpu); free_domain_struct(d); send_global_virq(VIRQ_DOM_EXC); --- xen/common/xenoprof.c.orig +++ xen/common/xenoprof.c @@@@ -239,6 +239,7 @@@@ static int alloc_xenoprof_struct( d->xenoprof->rawbuf = alloc_xenheap_pages(get_order_from_pages(npages), 0); if ( d->xenoprof->rawbuf == NULL ) { + xfree(d->xenoprof->vcpu); xfree(d->xenoprof); d->xenoprof = NULL; return -ENOMEM; @@@@ -286,6 +287,7 @@@@ void free_xenoprof_pages(struct domain * free_xenheap_pages(x->rawbuf, order); } + xfree(x->vcpu); xfree(x); d->xenoprof = NULL; } @ 1.1 log @Add patches from Xen security advisory, fixing: CVE-2015-7835 aka XSA-148 CVE-2015-7869 aka XSA-149 + XSA-151 CVE-2015-7970 aka XSA-150 CVE-2015-7971 aka XSA-152 Bump PKGREVISION @ text @d1 1 a1 1 $NetBSD: patch-CVE-2015-2752,v 1.1 2015/04/19 13:13:20 spz Exp $ @ 1.1.4.1 log @Pullup ticket #4888 - requested by bouyer sysutils/xenkernel45: security fix sysutils/xentools45: security fix Revisions pulled up: - sysutils/xenkernel45/Makefile 1.12-1.13 - sysutils/xenkernel45/distinfo 1.12-1.13 - sysutils/xenkernel45/patches/patch-CVE-2015-5307 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-7835 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-7969 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-7970 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-7971 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-8339 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-8555 1.1 - sysutils/xenkernel45/patches/patch-XSA-166 1.1 - sysutils/xentools45/Makefile 1.22-1.24 - sysutils/xentools45/PLIST 1.4 - sysutils/xentools45/distinfo 1.14-1.16 - sysutils/xentools45/patches/patch-CVE-2015-8341 1.1 - sysutils/xentools45/patches/patch-CVE-2015-8550 1.1 - sysutils/xentools45/patches/patch-CVE-2015-8554 1.1 - sysutils/xentools45/patches/patch-Makefile 1.2 - sysutils/xentools45/patches/patch-XSA135 deleted - sysutils/xentools45/patches/patch-XSA137 deleted - sysutils/xentools45/patches/patch-XSA138 deleted - sysutils/xentools45/patches/patch-XSA139 deleted - sysutils/xentools45/patches/patch-XSA140 deleted --- Module Name: pkgsrc Committed By: jnemeth Date: Thu Dec 31 13:27:10 UTC 2015 Modified Files: pkgsrc/sysutils/xentools45: Makefile PLIST distinfo pkgsrc/sysutils/xentools45/patches: patch-Makefile Log Message: Stop installing xenbackendd. It is leftover cruft from the xm toolstack. Running it will interfere with the operation of the xl toolstack, so it should never be used now that the xm toolstack is gone. --- Module Name: pkgsrc Committed By: bouyer Date: Thu Jan 7 17:48:34 UTC 2016 Modified Files: pkgsrc/sysutils/xenkernel45: Makefile distinfo pkgsrc/sysutils/xentools45: Makefile distinfo Added Files: pkgsrc/sysutils/xenkernel45/patches: patch-CVE-2015-5307 patch-CVE-2015-8339 patch-CVE-2015-8555 patch-XSA-166 pkgsrc/sysutils/xentools45/patches: patch-CVE-2015-8341 patch-CVE-2015-8550 patch-CVE-2015-8554 Log Message: Apply patches from Xen repository, fixing: CVE-2015-5307 and CVE-2015-8104 aka XSA-156 CVE-2015-8339 and CVE-2015-8340 aka XSA-159 CVE-2015-8555 aka XSA-165 XSA-166 CVE-2015-8341 aka XSA-160 CVE-2015-8550 aka XSA-155 Bump pkgrevision --- Module Name: pkgsrc Committed By: bouyer Date: Fri Jan 8 13:24:29 UTC 2016 Modified Files: pkgsrc/sysutils/xenkernel45: Makefile distinfo pkgsrc/sysutils/xentools45: Makefile distinfo Removed Files: pkgsrc/sysutils/xenkernel45/patches: patch-CVE-2015-7835 patch-CVE-2015-7969 patch-CVE-2015-7970 patch-CVE-2015-7971 pkgsrc/sysutils/xentools45/patches: patch-XSA135 patch-XSA137 patch-XSA138 patch-XSA139 patch-XSA140 Log Message: Update xenkernel45 and xentools45 to 4.5.2. Changes since 4.5.1 includes security fixes (most of which were already in our local patches) and bug fixes. The complete list of changes is there: http://www.xenproject.org/downloads/xen-archives/xen-45-series/xen-452.html @ text @d1 1 a1 1 $NetBSD: patch-CVE-2015-7969,v 1.1 2015/10/29 20:40:53 bouyer Exp $ @ 1.1.2.1 log @file patch-CVE-2015-7969 was added on branch pkgsrc-2015Q3 on 2015-11-04 21:22:27 +0000 @ text @d1 35 @ 1.1.2.2 log @Pullup ticket #4850 - requested by bouyer sysutils/xenkernel45: security fix Revisions pulled up: - sysutils/xenkernel45/Makefile 1.10 - sysutils/xenkernel45/distinfo 1.10 - sysutils/xenkernel45/patches/patch-CVE-2015-7835 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-7969 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-7970 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-7971 1.1 --- Module Name: pkgsrc Committed By: bouyer Date: Thu Oct 29 20:40:53 UTC 2015 Modified Files: pkgsrc/sysutils/xenkernel45: Makefile Added Files: pkgsrc/sysutils/xenkernel45/patches: patch-CVE-2015-7835 patch-CVE-2015-7969 patch-CVE-2015-7970 patch-CVE-2015-7971 Log Message: Add patches from Xen security advisory, fixing: CVE-2015-7835 aka XSA-148 CVE-2015-7869 aka XSA-149 + XSA-151 CVE-2015-7970 aka XSA-150 CVE-2015-7971 aka XSA-152 Bump PKGREVISION --- Module Name: pkgsrc Committed By: bouyer Date: Fri Oct 30 07:46:36 UTC 2015 Modified Files: pkgsrc/sysutils/xenkernel45: distinfo Log Message: Add patch entries from previous security commit. Pointed out by Takahiro Hayashi, thanks ! @ text @a0 35 $NetBSD$ Patch for CVE-2015-7869 aka XSA-149 + XSA-151, from http://xenbits.xenproject.org/xsa/xsa149.patch http://xenbits.xenproject.org/xsa/xsa151.patch --- xen/common/domain.c.orig +++ xen/common/domain.c @@@@ -841,6 +841,7 @@@@ static void complete_domain_destroy(stru xsm_free_security_domain(d); free_cpumask_var(d->domain_dirty_cpumask); + xfree(d->vcpu); free_domain_struct(d); send_global_virq(VIRQ_DOM_EXC); --- xen/common/xenoprof.c.orig +++ xen/common/xenoprof.c @@@@ -239,6 +239,7 @@@@ static int alloc_xenoprof_struct( d->xenoprof->rawbuf = alloc_xenheap_pages(get_order_from_pages(npages), 0); if ( d->xenoprof->rawbuf == NULL ) { + xfree(d->xenoprof->vcpu); xfree(d->xenoprof); d->xenoprof = NULL; return -ENOMEM; @@@@ -286,6 +287,7 @@@@ void free_xenoprof_pages(struct domain * free_xenheap_pages(x->rawbuf, order); } + xfree(x->vcpu); xfree(x); d->xenoprof = NULL; } @