CentOS virt - Nov 2017 - 4.4.4-26 with XSA-226, 227, 230 in centos-virt-testing

Xen 4.4.4 along with kernel 4.9.44 containing patches for XSAs (226 -
230) from August 15th are now available in centos-virt-testing.  If
possible, please test and provide feedback here so we can move these to
release soon.

XSA-228 did not affect Xen 4.4
XSA-229 only applies to the kernel

XSA-235 disclosed today only affects ARM and isn't going to be added to
these packages.

Thanks.

-- 
Kevin Stange
Chief Technology Officer
Steadfast | Managed Infrastructure, Datacenter and Cloud Services
800 S Wells, Suite 190 | Chicago, IL 60607
312.602.2689 X203 | Fax: 312.602.2688
kevin at steadfast.net | www.steadfast.net

Hi,

On Wed, Aug 23, 2017 at 04:02:46PM -0500, Kevin Stange
wrote:
> Xen 4.4.4 along with kernel 4.9.44 containing patches for XSAs (226 -
> 230) from August 15th are now available in centos-virt-testing.  If
> possible, please test and provide feedback here so we can move these to
> release soon.
> 
> XSA-228 did not affect Xen 4.4
> XSA-229 only applies to the kernel
> 
> XSA-235 disclosed today only affects ARM and isn't going to be added to
> these packages.
>
Thanks for updating the Xen 4.4 branch! Are you still planning for additional
updates there?


-- Pasi
> 
> -- 
> Kevin Stange
> Chief Technology Officer
> Steadfast | Managed Infrastructure, Datacenter and Cloud Services
> 800 S Wells, Suite 190 | Chicago, IL 60607
> 312.602.2689 X203 | Fax: 312.602.2688
> kevin at steadfast.net | www.steadfast.net

Kevin has been rolling back the security updates to the 4.4 branch.  He
has been working with some of the other distros (debian for sure, and
some others on the xen security list).

I think it is his intention to continue this for as long as he is able
to. (Kevin, chime in if you have a schedule lifetime or EOL in mind)

As long as Kevin (or anyone else) maintains the tree, I am happy to
build them into the repos.

On 11/28/2017 07:38 AM, Pasi K?rkk?inen wrote:
> Hi,
> 
> On Wed, Aug 23, 2017 at 04:02:46PM -0500, Kevin Stange wrote:
>> Xen 4.4.4 along with kernel 4.9.44 containing patches for XSAs (226 -
>> 230) from August 15th are now available in centos-virt-testing.  If
>> possible, please test and provide feedback here so we can move these to
>> release soon.
>>
>> XSA-228 did not affect Xen 4.4
>> XSA-229 only applies to the kernel
>>
>> XSA-235 disclosed today only affects ARM and isn't going to be
added to
>> these packages.
>>
> 
> Thanks for updating the Xen 4.4 branch! Are you still planning for
additional updates there?
> 
> 
> -- Pasi
> 
>>
>> -- 
>> Kevin Stange
>> Chief Technology Officer
>> Steadfast | Managed Infrastructure, Datacenter and Cloud Services
>> 800 S Wells, Suite 190 | Chicago, IL 60607
>> 312.602.2689 X203 | Fax: 312.602.2688
>> kevin at steadfast.net | www.steadfast.net
> _______________________________________________
> CentOS-virt mailing list
> CentOS-virt at centos.org
> https://lists.centos.org/mailman/listinfo/centos-virt
> 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL:
<http://lists.centos.org/pipermail/centos-virt/attachments/20171128/ca518cb1/attachment-0002.sig>