[Pkg-xen-changes] r1133 - in branches/wheezy/xen/debian: . patches

Bastian Blank waldi at alioth.debian.org
Sat Jan 19 12:10:43 UTC 2013 

Author: waldi
Date: Sat Jan 19 12:10:43 2013
New Revision: 1133

Log:
* debian/changelog: Update.
* debian/patches: Add fix for CVE-2012-5634.

Added:
   branches/wheezy/xen/debian/patches/CVE-2012-5634
Modified:
   branches/wheezy/xen/debian/changelog
   branches/wheezy/xen/debian/patches/series

Modified: branches/wheezy/xen/debian/changelog
==============================================================================
--- branches/wheezy/xen/debian/changelog	Tue Dec 11 19:34:02 2012	(r1132)
+++ branches/wheezy/xen/debian/changelog	Sat Jan 19 12:10:43 2013	(r1133)
@@ -1,3 +1,10 @@
+xen (4.1.3-8) UNRELEASED; urgency=low
+
+  * Fix error in VT-d interrupt remapping source validation.
+    CVE-2012-5634
+
+ -- Bastian Blank <waldi at debian.org>  Sat, 19 Jan 2013 13:04:21 +0100
+
 xen (4.1.3-7) unstable; urgency=low
 
   * Fix clock jump due to incorrect annotated inline assembler.

Added: branches/wheezy/xen/debian/patches/CVE-2012-5634
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ branches/wheezy/xen/debian/patches/CVE-2012-5634	Sat Jan 19 12:10:43 2013	(r1133)
@@ -0,0 +1,12 @@
+diff -r afdcd18ac70f -r 2a91623a5807 xen/drivers/passthrough/vtd/intremap.c
+--- a/xen/drivers/passthrough/vtd/intremap.c	Tue Jan 08 10:23:37 2013 +0100
++++ b/xen/drivers/passthrough/vtd/intremap.c	Wed Jan 09 17:19:01 2013 +0100
+@@ -499,7 +499,7 @@
+                 set_ire_sid(ire, SVT_VERIFY_BUS, SQ_ALL_16,
+                             (bus << 8) | pdev->bus);
+             else if ( pdev_type(bus, devfn) == DEV_TYPE_LEGACY_PCI_BRIDGE )
+-                set_ire_sid(ire, SVT_VERIFY_BUS, SQ_ALL_16,
++                set_ire_sid(ire, SVT_VERIFY_SID_SQ, SQ_ALL_16,
+                             PCI_BDF2(bus, devfn));
+         }
+         break;

Modified: branches/wheezy/xen/debian/patches/series
==============================================================================
--- branches/wheezy/xen/debian/patches/series	Tue Dec 11 19:34:02 2012	(r1132)
+++ branches/wheezy/xen/debian/patches/series	Sat Jan 19 12:10:43 2013	(r1133)
@@ -22,6 +22,7 @@
 CVE-2012-5513
 CVE-2012-5514
 CVE-2012-5515
+CVE-2012-5634
 
 upstream-23001:9eb9948904cd
 upstream-23002:eb64b8f8eebb

More information about the Pkg-xen-changes mailing list