head 1.2; access; symbols pkgsrc-2016Q1:1.1.0.4 pkgsrc-2016Q1-base:1.1 pkgsrc-2015Q4:1.1.0.2; locks; strict; comment @# @; 1.2 date 2016.05.12.15.42.58; author bouyer; state dead; branches; next 1.1; commitid sU0kkMApGRqxSc6z; 1.1 date 2016.01.07.17.48.34; author bouyer; state Exp; branches 1.1.2.1 1.1.4.1; next ; commitid aP0m77QdIXahF1Qy; 1.1.2.1 date 2016.01.07.17.48.34; author bsiegert; state dead; branches; next 1.1.2.2; commitid KbJ6DapSMpov0zQy; 1.1.2.2 date 2016.01.11.22.12.33; author bsiegert; state Exp; branches; next ; commitid KbJ6DapSMpov0zQy; 1.1.4.1 date 2016.05.21.15.48.57; author bsiegert; state dead; branches; next ; commitid QF0DMbVLQWMPFm7z; desc @@ 1.2 log @Update xenkernel45 and xentools45 to 4.5.3. While there also add patches for security issues XSA-172, XSA-173 and XSA-179 (others between 170 and 179 are either not yet public, or linux-only). Upstream changes since 4.5.2: - security issues up to XSA-170 are fixed (these were already patched in pkgsrc). - other minor performances and functionality fixes. full changelog at: http://www.xenproject.org/downloads/xen-archives/xen-45-series/xen-453.html @ text @$NetBSD: patch-CVE-2015-8554,v 1.1 2016/01/07 17:48:34 bouyer Exp $ patch for CVE-2015-8554 aka XSA-164 from http://xenbits.xenproject.org/xsa/xsa164.patch --- qemu-xen-traditional/hw/pt-msi.c.orig +++ qemu-xen-traditional/hw/pt-msi.c @@@@ -440,6 +440,13 @@@@ static void pci_msix_writel(void *opaque return; } + if ( addr - msix->mmio_base_addr >= msix->total_entries * 16 ) + { + PT_LOG("Error: Out of bounds write to MSI-X table," + " addr %016"PRIx64"\n", addr); + return; + } + entry_nr = (addr - msix->mmio_base_addr) / 16; entry = &msix->msix_entry[entry_nr]; offset = ((addr - msix->mmio_base_addr) % 16) / 4; @ 1.1 log @Apply patches from Xen repository, fixing: CVE-2015-5307 and CVE-2015-8104 aka XSA-156 CVE-2015-8339 and CVE-2015-8340 aka XSA-159 CVE-2015-8555 aka XSA-165 XSA-166 CVE-2015-8341 aka XSA-160 CVE-2015-8550 aka XSA-155 Bump pkgrevision @ text @d1 1 a1 1 $NetBSD: patch-CVE-2015-2756,v 1.1 2015/04/19 13:13:21 spz Exp $ @ 1.1.4.1 log @Pullup ticket #5017 - requested by sevan sysutils/xenkernel45: security fix sysutils/xentools45: security fix Revisions pulled up: - sysutils/xenkernel45/Makefile 1.14 - sysutils/xenkernel45/distinfo 1.14 - sysutils/xenkernel45/patches/patch-CVE-2015-5307 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-8339 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-8555 deleted - sysutils/xenkernel45/patches/patch-XSA-166 deleted - sysutils/xenkernel45/patches/patch-XSA-172 1.1 - sysutils/xenkernel45/patches/patch-XSA-173 1.1 - sysutils/xentools45/Makefile 1.32 - sysutils/xentools45/distinfo 1.22 - sysutils/xentools45/patches/patch-CVE-2015-8341 deleted - sysutils/xentools45/patches/patch-CVE-2015-8550 deleted - sysutils/xentools45/patches/patch-CVE-2015-8554 deleted - sysutils/xentools45/patches/patch-XSA-179 1.1 --- Module Name: pkgsrc Committed By: bouyer Date: Thu May 12 15:42:58 UTC 2016 Modified Files: pkgsrc/sysutils/xenkernel45: Makefile distinfo pkgsrc/sysutils/xentools45: Makefile distinfo Added Files: pkgsrc/sysutils/xenkernel45/patches: patch-XSA-172 patch-XSA-173 pkgsrc/sysutils/xentools45/patches: patch-XSA-179 Removed Files: pkgsrc/sysutils/xenkernel45/patches: patch-CVE-2015-5307 patch-CVE-2015-8339 patch-CVE-2015-8555 patch-XSA-166 pkgsrc/sysutils/xentools45/patches: patch-CVE-2015-8341 patch-CVE-2015-8550 patch-CVE-2015-8554 Log Message: Update xenkernel45 and xentools45 to 4.5.3. While there also add patches for security issues XSA-172, XSA-173 and XSA-179 (others between 170 and 179 are either not yet public, or linux-only). Upstream changes since 4.5.2: - security issues up to XSA-170 are fixed (these were already patched in pkgsrc). - other minor performances and functionality fixes. full changelog at: http://www.xenproject.org/downloads/xen-archives/xen-45-series/xen-453.html @ text @d1 1 a1 1 $NetBSD: patch-CVE-2015-8554,v 1.1 2016/01/07 17:48:34 bouyer Exp $ @ 1.1.2.1 log @file patch-CVE-2015-8554 was added on branch pkgsrc-2015Q4 on 2016-01-11 22:12:33 +0000 @ text @d1 21 @ 1.1.2.2 log @Pullup ticket #4888 - requested by bouyer sysutils/xenkernel45: security fix sysutils/xentools45: security fix Revisions pulled up: - sysutils/xenkernel45/Makefile 1.12-1.13 - sysutils/xenkernel45/distinfo 1.12-1.13 - sysutils/xenkernel45/patches/patch-CVE-2015-5307 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-7835 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-7969 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-7970 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-7971 deleted - sysutils/xenkernel45/patches/patch-CVE-2015-8339 1.1 - sysutils/xenkernel45/patches/patch-CVE-2015-8555 1.1 - sysutils/xenkernel45/patches/patch-XSA-166 1.1 - sysutils/xentools45/Makefile 1.22-1.24 - sysutils/xentools45/PLIST 1.4 - sysutils/xentools45/distinfo 1.14-1.16 - sysutils/xentools45/patches/patch-CVE-2015-8341 1.1 - sysutils/xentools45/patches/patch-CVE-2015-8550 1.1 - sysutils/xentools45/patches/patch-CVE-2015-8554 1.1 - sysutils/xentools45/patches/patch-Makefile 1.2 - sysutils/xentools45/patches/patch-XSA135 deleted - sysutils/xentools45/patches/patch-XSA137 deleted - sysutils/xentools45/patches/patch-XSA138 deleted - sysutils/xentools45/patches/patch-XSA139 deleted - sysutils/xentools45/patches/patch-XSA140 deleted --- Module Name: pkgsrc Committed By: jnemeth Date: Thu Dec 31 13:27:10 UTC 2015 Modified Files: pkgsrc/sysutils/xentools45: Makefile PLIST distinfo pkgsrc/sysutils/xentools45/patches: patch-Makefile Log Message: Stop installing xenbackendd. It is leftover cruft from the xm toolstack. Running it will interfere with the operation of the xl toolstack, so it should never be used now that the xm toolstack is gone. --- Module Name: pkgsrc Committed By: bouyer Date: Thu Jan 7 17:48:34 UTC 2016 Modified Files: pkgsrc/sysutils/xenkernel45: Makefile distinfo pkgsrc/sysutils/xentools45: Makefile distinfo Added Files: pkgsrc/sysutils/xenkernel45/patches: patch-CVE-2015-5307 patch-CVE-2015-8339 patch-CVE-2015-8555 patch-XSA-166 pkgsrc/sysutils/xentools45/patches: patch-CVE-2015-8341 patch-CVE-2015-8550 patch-CVE-2015-8554 Log Message: Apply patches from Xen repository, fixing: CVE-2015-5307 and CVE-2015-8104 aka XSA-156 CVE-2015-8339 and CVE-2015-8340 aka XSA-159 CVE-2015-8555 aka XSA-165 XSA-166 CVE-2015-8341 aka XSA-160 CVE-2015-8550 aka XSA-155 Bump pkgrevision --- Module Name: pkgsrc Committed By: bouyer Date: Fri Jan 8 13:24:29 UTC 2016 Modified Files: pkgsrc/sysutils/xenkernel45: Makefile distinfo pkgsrc/sysutils/xentools45: Makefile distinfo Removed Files: pkgsrc/sysutils/xenkernel45/patches: patch-CVE-2015-7835 patch-CVE-2015-7969 patch-CVE-2015-7970 patch-CVE-2015-7971 pkgsrc/sysutils/xentools45/patches: patch-XSA135 patch-XSA137 patch-XSA138 patch-XSA139 patch-XSA140 Log Message: Update xenkernel45 and xentools45 to 4.5.2. Changes since 4.5.1 includes security fixes (most of which were already in our local patches) and bug fixes. The complete list of changes is there: http://www.xenproject.org/downloads/xen-archives/xen-45-series/xen-452.html @ text @a0 21 $NetBSD$ patch for CVE-2015-8554 aka XSA-164 from http://xenbits.xenproject.org/xsa/xsa164.patch --- qemu-xen-traditional/hw/pt-msi.c.orig +++ qemu-xen-traditional/hw/pt-msi.c @@@@ -440,6 +440,13 @@@@ static void pci_msix_writel(void *opaque return; } + if ( addr - msix->mmio_base_addr >= msix->total_entries * 16 ) + { + PT_LOG("Error: Out of bounds write to MSI-X table," + " addr %016"PRIx64"\n", addr); + return; + } + entry_nr = (addr - msix->mmio_base_addr) / 16; entry = &msix->msix_entry[entry_nr]; offset = ((addr - msix->mmio_base_addr) % 16) / 4; @