Changelog
xen (4.8.5.final+shim4.10.4-1+deb9u12) stretch-security; urgency=medium
* *NOTE* this will probably be the *LAST UPDATE* for Xen in Debian 9.x
(stretch), since this is the last batch of security patches from
upstream, where Xen 4.8 is out of security support.
* Update to new upstream final tip of 4.8 stable branch, which I have
dubbed upstream/stable-4.8.5.final. And shim 4.10.4.
* This includes fixes to:
XSA-311 CVE-2019-19577
XSA-310 CVE-2019-19580
XSA-309 CVE-2019-19578
XSA-308 CVE-2019-19583
XSA-307 CVE-2019-19581 CVE-2019-19582
XSA-306 CVE-2019-19579
XSA-305 CVE-2019-11135
XSA-304 CVE-2018-12207
XSA-303 CVE-2019-18422
XSA-302 CVE-2019-18424
XSA-301 CVE-2019-18423
XSA-299 CVE-2019-18421
XSA-298 CVE-2019-18425
XSA-297 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091
XSA-296 CVE-2019-18420
XSA-295 CVE-2019-17349 CVE-2019-17350
XSA-294 CVE-2019-17348
XSA-293 CVE-2019-17347
XSA-292 CVE-2019-17346
XSA-291 CVE-2019-17345
XSA-290 CVE-2019-17344
XSA-288 CVE-2019-17343
XSA-287 CVE-2019-17342
XSA-285 CVE-2019-17341
XSA-284 CVE-2019-17340
* For completeness, the following are not applicable:
XSA-300 CVE-2019-17351 Bug is in Linux
XSA-289 Spectre V1 + L1TF combo; no new fixes
XSA-283 Withdrawn XSA number
XSA-281 Withdrawn XSA number
* The following is *not* fixed at this time:
XSA-286 Still embargoed.
* README.comet: remove line about PVH support.
[Hans van Kranenburg] Closes:#908453.
-- Ian Jackson <email address hidden> Fri, 10 Jan 2020 17:09:30 +0000