search for: xsa273

...mits on those branches are restricted to those that address the following XSAs (cf. [1]): - XSA-273 (CVE-2018-3620, CVE-2018-3646) - XSA-272 (no CVE yet) - XSA-269 (no CVE yet) - XSA-268 (no CVE yet) In addition to the XSAs mentioned above that will be addressed by the upcoming upload (i.e. 4.8.4+xsa273+shim4.10.1+xsa273-1+deb9u10) security updates that address XSA-270 [2] have been released that need to be included in the kernel packaging. Linux version 4.7 and onwards are affected by this. [0] https://xenbits.xen.org/xsa/advisory-273.html [1] https://xenbits.xen.org/xsa/ [2] https://xenbits.xen...

...(stretch) amd64, we have a bug on the last Xen > Hypervisor version: > > xen-hypervisor-4.8-amd64 4.8.5+shim4.10.2+xsa282 (Read: 4.8.5+shim4.10.2+xsa282-1+deb9u11) > The rollback on the previous package version corrected the problem: > > xen-hypervisor-4.8-amd64 4.8.4+xsa273+shim4.10.1+xsa273-1+deb9u10 (Only the hypervisor needed to be downgraded to fix the issue) > The errors are on the domU a frozen file system until a kernel panic. (not really a kernel panic, just a warning that processes are stuck for more than 2m waiting for fs I/O). So it looks like the de...

...t I did an upgrade from previous 4.11 package to the new ones, and ran in a problem. So later I did downgrade to 4.8 from stretch and then redid the upgrade test. There it also occurs: -# apt-get dist-upgrade [...] Unpacking xenstore-utils (4.11.1~pre.20180911.5acdd26fdc+dfsg-2~bpo9+1) over (4.8.4+xsa273+shim4.10.1+xsa273-1+deb9u10) ... dpkg: error processing archive /tmp/apt-dpkg-install-WhZg6K/11-xenstore-utils_4.11.1~pre.20180911.5acdd26fdc+dfsg-2~bpo9+1_amd64.deb (--unpack): trying to overwrite '/usr/share/man/man1/xenstore-chmod.1.gz', which is also in package xen-utils-common 4.8.4+x...