[Bug 1180397] Re: [MRE] Xen stable update to 4.2.2
This bug was fixed in the package xen - 4.2.2-0ubuntu0.13.04.1 --- xen (4.2.2-0ubuntu0.13.04.1) raring-proposed; urgency=low * Updating to latest upstream stable release (LP: #1180397). - Security patches included which replace existing changes: * CVE-2012-5634 / XSA-33, CVE-2013-0151 / XSA-34, CVE-2013-0152 / XSA-35, CVE-2013-0153 / XSA-36, CVE-2013-0215 / XSA-38, CVE-2012-6075 / XSA-41, CVE-2013-1917 / XSA-44, CVE-2013-1919 / XSA-46, CVE-2013-1920 / XSA-47 - Additional security related changes, not included before: * CVE-2013-0154 / XSA-37: Hypervisor crash due to incorrect ASSERT (debug build only) * CVE-2013-1922 / XSA-48: qemu-nbd format-guessing due to missing format specification - Bug fixes * ACPI APEI/ERST finally working on production systems * Bug fixes for other low level system state handling * Bug fixes and improvements to the libxl tool stack * Bug fixes to nested virtualization - Dropping the following patches previously added as they are included in the upstream stable release: * 0008-vmx-Simplify-cr0-update-handling-by-deferring-cr4-ch.patch * 0009-VMX-disable-SMEP-feature-when-guest-is-in-non-paging.patch * 0010-VMX-Always-disable-SMEP-when-guest-is-in-non-paging-.patch -- Stefan Bader stefan.ba...@canonical.com Tue, 06 Aug 2013 13:26:05 +0100 ** Changed in: xen (Ubuntu Raring) Status: Fix Committed = Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-5634 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-6075 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-0151 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-0152 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-0153 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-0154 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-0215 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-1917 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-1919 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-1920 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2013-1922 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xen in Ubuntu. https://bugs.launchpad.net/bugs/1180397 Title: [MRE] Xen stable update to 4.2.2 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1180397/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1180397] Re: [MRE] Xen stable update to 4.2.2
Adding the test results as an attachment to keep the formatting sane. Note on the one occasional failure of the security QRT run: one of the tests for /proc/pid/maps turns out to be racy at least (I need to talk to the security team about it). But failing or not failing is only depending on execution speed of the test and not a regression at all. So from my point of view I would hope this to be sufficient regression testing. ** Attachment added: Test result fo Xen 4.2.2 in Raring https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1180397/+attachment/3840348/+files/xen-r-4.2.2.txt ** Tags removed: verification-needed ** Tags added: verification-done -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xen in Ubuntu. https://bugs.launchpad.net/bugs/1180397 Title: [MRE] Xen stable update to 4.2.2 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1180397/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1180397] Re: [MRE] Xen stable update to 4.2.2
Hi Brian, not formally yet as I wanted to write that down here as comments with results. Need to see how much effort it will be to leverage some or more of the regression testing that xen upstram does on the git repos. But since I am travelling right now it will get delayed till next week. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xen in Ubuntu. https://bugs.launchpad.net/bugs/1180397 Title: [MRE] Xen stable update to 4.2.2 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1180397/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1180397] Re: [MRE] Xen stable update to 4.2.2
The provisional micro-release exception for Xen includes the following caveat: Xen, first SRU needs to define a formal regression test procedure, such as boot the last N releases/LTS default install and verify some list of things (networking, file system test suite, etc.) (2013-07-22) Where has that been defined? I do not see it in the description here. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xen in Ubuntu. https://bugs.launchpad.net/bugs/1180397 Title: [MRE] Xen stable update to 4.2.2 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1180397/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1180397] Re: [MRE] Xen stable update to 4.2.2
Hello Stefan, or anyone else affected, Accepted xen into raring-proposed. The package will build now and be available at http://launchpad.net/ubuntu/+source/xen/4.2.2-0ubuntu0.13.04.1 in a few hours, and then in the -proposed repository. Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users. If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-needed to verification-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed. In either case, details of your testing will help us make a better decision. Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance! ** Changed in: xen (Ubuntu Raring) Status: In Progress = Fix Committed ** Tags added: verification-needed ** Changed in: xen (Ubuntu) Status: In Progress = Fix Released ** No longer affects: xen (Ubuntu Saucy) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xen in Ubuntu. https://bugs.launchpad.net/bugs/1180397 Title: [MRE] Xen stable update to 4.2.2 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1180397/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1180397] Re: [MRE] Xen stable update to 4.2.2
** Summary changed: - Xen stable update to 4.2.2 + [MRE] Xen stable update to 4.2.2 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xen in Ubuntu. https://bugs.launchpad.net/bugs/1180397 Title: [MRE] Xen stable update to 4.2.2 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1180397/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs