Hi everyone, I am pleased to announce that the QEMU v6.1.1 stable release is now available.
You can grab the tarball from our download page here: https://www.qemu.org/download/#source v6.1.1 is now tagged in the official qemu.git repository, and the stable-6.1 branch has been updated accordingly: https://git.qemu.org/?p=qemu.git;a=shortlog;h=refs/heads/stable-6.1 This update contains general fixes for various architectures/subsystems, including the following CVE fixes: e1000 (CVE-2021-20257) floppy drive (CVE-2021-20196) NVMe (CVE-2021-3947) SCSI (CVE-2021-3930) UAS (CVE-2021-3713) virtio-net (CVE-2021-3748) vmxnet3 (CVE-2021-20203) Please see the changelog for additional details and update accordingly. Thank you to everyone involved! CHANGELOG: 54e1f5be86: Update version for v6.1.1 release (Michael Roth) fddd169de5: tests: tcg: Fix PVH test with binutils 2.36+ (Cole Robinson) 711bd602cc: tcg/arm: Reduce vector alignment requirement for NEON (Richard Henderson) e88636b4d4: target/i386: add missing bits to CR4_RESERVED_MASK (Daniel P. Berrangé) 34833f361b: qxl: fix pre-save logic (Gerd Hoffmann) 43583f0c07: e1000: fix tx re-entrancy problem (Jon Maloy) 1ce084af08: net: vmxnet3: validate configuration values during activate (CVE-2021-20203) (Prasad J Pandit) fec12fc888: virtio-blk: Fix clean up of host notifiers for single MR transaction. (Mark Mielke) ef0cf1887e: tests/qtest/fdc-test: Add a regression test for CVE-2021-20196 (Philippe Mathieu-Daudé) 71ba2adfeb: hw/block/fdc: Kludge missing floppy drive to fix CVE-2021-20196 (Philippe Mathieu-Daudé) 7629818574: hw/block/fdc: Extract blk_create_empty_drive() (Philippe Mathieu-Daudé) 4658dfcbc0: chardev/wctable: don't free the instance in wctablet_chr_finalize (Daniil Tatianin) 2b2eb343a0: hw/nvme: fix buffer overrun in nvme_changed_nslist (CVE-2021-3947) (Klaus Jensen) 932333c5f0: nbd/server: Don't complain on certain client disconnects (Eric Blake) 8c2d5911de: vfio: Fix memory leak of hostwin (Peng Liang) 08e46e6d92: virtio: use virtio accessor to access packed event (Jason Wang) df1c9c3039: virtio: use virtio accessor to access packed descriptor flags (Jason Wang) 7204b8f3c6: pcie: rename 'native-hotplug' to 'x-native-hotplug' (Igor Mammedov) 36c651c226: accel/tcg: Register a force_rcu notifier (Greg Kurz) fceaefb43f: rcu: Introduce force_rcu notifier (Greg Kurz) 7d71e6bfb0: hw: m68k: virt: Add compat machine for 6.1 (Laurent Vivier) c2c7f108b8: hw/scsi/scsi-disk: MODE_PAGE_ALLS not allowed in MODE SELECT commands (Mauro Matteo Cascella) 3488bb205d: target-i386: mmu: fix handling of noncanonical virtual addresses (Paolo Bonzini) cddfaf96ab: target-i386: mmu: use pg_mode instead of HF_LMA_MASK (Paolo Bonzini) 43a457841f: Partially revert "build: -no-pie is no functional linker flag" (Jessica Clarke) ebf660beb1: block/file-posix: Fix return value translation for AIO discards (Ari Sundholm) bbbdedb386: tests/acpi/bios-tables-test: update DSDT blob for multifunction bridge test (Ani Sinha) 8319de607f: tests/acpi/pcihp: add unit tests for hotplug on multifunction bridges for q35 (Ani Sinha) a759dc19ec: tests/acpi/bios-tables-test: add and allow changes to a new q35 DSDT table blob (Ani Sinha) 24101e36f1: pci: fix PCI resource reserve capability on BE (Michael S. Tsirkin) a43e057bd6: block: introduce max_hw_iov for use in scsi-generic (Paolo Bonzini) 3aa2c2cd67: bios-tables-test: Update ACPI DSDT table golden blobs for q35 (Ani Sinha) 9e80a430ed: hw/i386/acpi: fix conflicting IO address range for acpi pci hotplug in q35 (Ani Sinha) c66f5dfc12: bios-tables-test: allow changes in DSDT ACPI tables for q35 (Ani Sinha) 5cf977a2a1: hw/i386: Rename default_bus_bypass_iommu (Jean-Philippe Brucker) 36cfd11a86: hw/arm/virt: Rename default_bus_bypass_iommu (Jean-Philippe Brucker) 246ccfbf44: vhost-vsock: fix migration issue when seqpacket is supported (Stefano Garzarella) 3ee93e456d: qemu-sockets: fix unix socket path copy (again) (Michael Tokarev) ec08035102: plugins: do not limit exported symbols if modules are active (Paolo Bonzini) f97853c8cb: plugins/execlog: removed unintended "s" at the end of log lines. (Mahmoud Mandour) abeee2a470: 9pfs: fix crash in v9fs_walk() (Christian Schoenebeck) ff6d391e10: i386/cpu: Remove AVX_VNNI feature from Cooperlake cpu model (Yang Zhong) b19de1137b: hw/display/artist: Fix bug in coordinate extraction in artist_vram_read() and artist_vram_write() (Helge Deller) 3c6e5df1f6: libvhost-user: fix VHOST_USER_REM_MEM_REG skipping mmap_addr (David Hildenbrand) 695c25e167: vhost-user: fix duplicated notifier MR init (Xueming Li) 23ba9f170f: uas: add stream number sanity checks. (Gerd Hoffmann) f0dee5a40d: virtio-mem-pci: Fix memory leak when creating MEMORY_DEVICE_SIZE_CHANGE event (David Hildenbrand) 7637373b23: hmp: Unbreak "change vnc" (Markus Armbruster) 4c34ef3d34: qemu-nbd: Change default cache mode to writeback (Nir Soffer) 9e41f16fca: virtio-net: fix use after unmap/free for sg (Jason Wang) 3054f772de: target/arm: Don't skip M-profile reset entirely in user mode (Peter Maydell) aa77e375a5: virtio-balloon: don't start free page hinting if postcopy is possible (David Hildenbrand)