https://github.com/qemu/qemu/commit/5c49f7ee3b98316850de6a33952a4ac47701c118
** Description changed:
Commit 5d971f9e67 ("memory: Revert "memory: accept mismatching sizes in
memory_region_access_valid"") was cherry-picked to deal with
CVE-2020-13754 but the follow up fix in commit ab3d207fe8 ("riscv:
sifive_test: Allow 16-bit writes to memory region") was not, resulting
in the bug described in the commit message in 1:4.2-3ubuntu6.11:
https://github.com/nathanchance/continuous-integration2/runs/1834110909
Please consider adding ab3d207fe8 to the next release so that there is
no more regression.
+
+ [Changelog]
+
+ qemu (1:4.2-3ubuntu6.11) focal; urgency=medium
+
+ *
d/p/ubuntu/lp-1907656-s390x-s390-virtio-ccw-Reset-PCI-devices-during-subsy:
+ avoid PCI devices to become unavailable on reset (LP: #1907656)
+
+ ...
+
+ qemu (1:4.2-3ubuntu6.4) focal-security; urgency=medium
+ ...
+ * SECURITY UPDATE: out-of-bounds access via msi-x mmio operation
+ - debian/patches/ubuntu/CVE-2020-13754-1.patch: revert accepting
+ mismatching sizes in memory_region_access_valid in memory.c.
+ - debian/patches/ubuntu/CVE-2020-13754-2.patch: accept byte and word
+ access to core ACPI registers in hw/acpi/core.c.
+ - CVE-2020-13754
+
+
+ [CI Log]
+
+ Requesting system poweroff
+ [ 4.312781] reboot: Power down
+ sbi_trap_error: hart0: trap handler failed (error -2)
+ sbi_trap_error: hart0: mcause=0x0000000000000007 mtval=0x0000000000100000
+ sbi_trap_error: hart0: mepc=0x000000008000d4b0 mstatus=0x0000000000001822
+ sbi_trap_error: hart0: ra=0x00000000800098de sp=0x0000000080015c78
+ ...
+
+ Traceback (most recent call last):
+ File "./check_logs.py", line 106, in <module>
+ boot_test(build)
+ File "./check_logs.py", line 94, in boot_test
+ run_boot()
+ File "./check_logs.py", line 82, in run_boot
+ raise e
+ File "./check_logs.py", line 78, in run_boot
+ subprocess.run(boot_qemu, check=True)
+ File "/usr/lib/python3.8/subprocess.py", line 512, in run
+ raise CalledProcessError(retcode, process.args,
+ subprocess.CalledProcessError: Command '['./boot-utils/boot-qemu.sh', '-a',
'riscv', '-k',
'/home/runner/work/continuous-integration2/continuous-integration2/Image']'
returned non-zero exit status 124.
+ Error: Process completed with exit code 1.
** Patch added: "Patch mentioned in bug report"
https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1914883/+attachment/5461442/+files/5c49f7ee3b98316850de6a33952a4ac47701c118.patch
** Also affects: qemu (Ubuntu Focal)
Importance: Undecided
Status: New
** Changed in: qemu (Ubuntu Focal)
Status: New => Triaged
** Tags added: server-next
** Changed in: qemu (Ubuntu Focal)
Importance: Undecided => High
** Summary changed:
- Please cherry-pick ab3d207fe89bc0c63739db19e177af49179aa457 into Focal package
+ hart0: trap handler failed (error -2) (Needs cherry-pick ab3d207f)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1914883
Title:
hart0: trap handler failed (error -2) (Needs cherry-pick ab3d207f)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1914883/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
