22.03.2023 12:09, Thomas Huth пишет: ...> Maybe pick also these patches that mention "CVE" in the description:
qga/win32: Remove change action from MSI installer qga/win32: Use rundll for VSS installation
Yes, that one is a good idea.
hw/net/vmxnet3: allow VMXNET3_MAX_MTU itself as a value
Simple, picked up.
hw/pvrdma: Protect against buggy or malicious guest driver
This one has been in debian for quite a long time, it is finally applied upstream, which is very good.
From my s390x perspective, I'd like to suggest the following patches (if they can be applied cleanly): target/s390x/arch_dump: Fix memory corruption in s390x_write_elf64_notes() target/s390x: Fix emulation of C(G)HRL
Ok.
target/s390x: Fix R[NOX]SBG with T=1
9701596d821 says, in the commit message: Exposed by commit e2e641fa3d5 ("tcg: Change default temp lifetime to TEMP_TB"). Without this commit (e2e641fa3d5), commit 9701596d821 makes little sense I think. Also, commit 9701596d821 applies after dd161de75f3 "target/s390x: Remove g_out, g_out2, g_in1, g_in2 from DisasContext".
target/s390x: Fix EXECUTE of relative long instructions
This one needs "target/s390x: Split out gen_ri2" first, it looks like it's harmless to have. Thank you very much for the suggestions, Thomas! /mjt