Package Release Info

qemu-7.1.0-150500.49.24.1

Update Info: SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3948
Available in Package Hub : 15 SP5 Subpackages Updates

platforms

AArch64
ppc64le
s390x
x86-64

subpackages

qemu-accel-qtest

qemu-arm

qemu-audio-jack

qemu-audio-oss

qemu-block-dmg

qemu-block-gluster

qemu-block-nfs

qemu-extra

qemu-hw-s390x-virtio-gpu-ccw

qemu-hw-usb-smartcard

qemu-ivshmem-tools

qemu-microvm

qemu-ppc

qemu-s390x

qemu-skiboot

qemu-SLOF

qemu-vhost-user-gpu

Change Logs

* Tue Oct 29 2024 dfaggioli@suse.com

- Update to version 9.1.1:
  Full changelog here:
  https://lore.kernel.org/qemu-devel/7f0561ec-3564-4860-bacf-a98071a5ce52@tls.msk.ru/
  Some of the most notable features:
  * ui/dbus: fix filtering all update messages
  * ui/win32: fix potential use-after-free with dbus shared memory
  * ui/dbus: fix leak on message filtering
  * hw/audio/hda: fix memory leak on audio setup
  * hw/audio/hda: free timer on exit
  * hw/char/pl011: Use correct masks for IBRD and FBRD
  * hw/intc/arm_gicv3_cpuif: Add cast to match the documentation
  * hw/intc/arm_gicv3: Add cast to match the documentation
  * hw/intc/arm_gicv3: Add cast to match the documentation
  * meson: ensure -mcx16 is passed when detecting ATOMIC128
  * meson: define qemu_isa_flags
  * meson: fix machine option for x86_version
  * target/m68k: Always return a temporary from gen_lea_mode
  * tcg/ppc: Use TCG_REG_TMP2 for scratch index in prepare_host_addr
  * tcg/ppc: Use TCG_REG_TMP2 for scratch tcg_out_qemu_st
  * linux-user: Fix parse_elf_properties GNU0_MAGIC check
  * linux-user/flatload: Take mmap_lock in load_flt_binary()
  * vnc: fix crash when no console attached
  * testing: bump mips64el cross to bookworm and fix package list
  * hw/sd/sdcard: Fix handling of disabled boot partitions
  * target/arm: Avoid target_ulong for physical address lookups
  * block/reqlist: allow adding overlapping requests
  * util/timer: avoid deadlock when shutting down
  * hw/mips/jazz: fix typo in in-built NIC alias
  * tcg: Fix iteration step in 32-bit gvec operation
  * hw/loongarch/virt: Add description for virt machine type
  * migration/multifd: Fix p->iov leak in multifd-uadk.c
  * target/ppc: Fix migration of CPUs with TLB_EMB TLB type
  * target/hppa: Fix random 32-bit linux-user crashes
  * target/arm: Correct ID_AA64ISAR1_EL1 value for neoverse-v1
  * hw/char/stm32l4x5_usart.c: Enable USART ACK bit response
  * migration/multifd: Fix rb->receivedmap cleanup race
  * mac_dbdma: Remove leftover `dma_memory_unmap` calls

* Mon Oct 28 2024 dfaggioli@suse.com

- Fix bsc#1230915, CVE-2024-8612:
  * softmmu: Support concurrent bounce buffers (bsc#1230915, CVE-2024-8612)
  * system/physmem: Per-AddressSpace bounce buffering (bsc#1230915, CVE-2024-8612)
  * system/physmem: Propagate AddressSpace to MapClient helpers (bsc#1230915, CVE-2024-8612)
  * system/physmem: Replace qemu_mutex_lock() calls with QEMU_LOCK_GUARD (bsc#1230915, CVE-2024-8612)

Version: 7.1.0-150500.49.21.1

* Tue Sep 17 2024 dfaggioli@suse.com

- Fix bsc#1229929, bsc#1230140 (patch already submitted upstream):
  * [openSUSE] target/ppc: Fix lxvx/stxvx facility check (bsc#1229929)

* Wed Sep 11 2024 dfaggioli@suse.com

- Fix bsc#1230140 (and bsc#1229814 & bsc#1230008):
  * target/ppc: Fix lxv/stxv MSR facility check (bsc#1230140, bsc#1229814, bsc#1230008)
- Fix a build issue of ipxe with newer binutils:
  * [openSUSE] roms/ipxe: Backport patches to fix the build with binutils 2.41
- Misc:
  * [openSUSE] Update hash of the sgabios submodule

Version: 7.1.0-150500.49.18.1

* Tue Aug 13 2024 dfaggioli@suse.com

- Fix bsc#1229007, CVE-2024-7409:
  * nbd/server: CVE-2024-7409: Close stray clients at server-stop (bsc#1229007)
  * nbd/server: CVE-2024-7409: Drop non-negotiating clients (bsc#1229007)
  * nbd/server: CVE-2024-7409: Cap default max-connections to 100 (bsc#1229007)
  * nbd/server: Plumb in new args to nbd_client_add() (bsc#1229007, CVE-2024-7409)
  * nbd: Minor style and typo fixes (bsc#1229007, CVE-2024-7409)

Version: 7.1.0-150500.49.15.1

* Thu Apr 18 2024 dfaggioli@suse.com

- Backports and bugfixes:
  * hw/net/net_tx_pkt: Fix overrun in update_sctp_checksum() (bsc#1222841, CVE-2024-3567)
  * hw/virtio/virtio-crypto: Protect from DMA re-entrancy bugs (bsc#1222843, CVE-2024-3446)
  * hw/char/virtio-serial-bus: Protect from DMA re-entrancy bugs (bsc#1222843, CVE-2024-3446)
  * hw/display/virtio-gpu: Protect from DMA re-entrancy bugs (bsc#1222843, CVE-2024-3446)
  * hw/virtio: Introduce virtio_bh_new_guarded() helper (bsc#1222843, CVE-2024-3446)
  * hw/sd/sdhci: Do not update TRNMOD when Command Inhibit (DAT) is set (bsc#1222845, CVE-2024-3447)
  * hw/nvme: Use pcie_sriov_num_vfs() (bsc#1220065, CVE-2024-26328)

Version: 7.1.0-150500.49.12.1

* Mon Mar 18 2024 dfaggioli@suse.com

- Bugs and CVEs fixes:
  * hw/nvme: Use pcie_sriov_num_vfs() (bsc#1220065, CVE-2024-26328)
  * pcie: Introduce pcie_sriov_num_vfs (bsc#1220065, CVE-2024-26328)
  * virtio-net: correctly copy vnet header when flushing TX (bsc#1218484, CVE-2023-6693)
  * hw/pvrdma: Protect against buggy or malicious guest driver (bsc#1209554, CVE-2023-1544)
  * pcie_sriov: Validate NumVFs (bsc#1220062, CVE-2024-26327)
  * esp: restrict non-DMA transfer length to that of available data (bsc#1220134, CVE-2024-24474)
  * s390x/ap: Wire up the device request notifier interface (bsc#1205316)
  * linux-headers: update to v6.5-rc1 (bsc#1205316)
  * Update linux headers to v6.3rc5 (bsc#1205316)
  * linux-headers: Update to v6.2-rc8 (bsc#1205316)
  * linux-headers: Update to v6.1 (bsc#1205316)
- Backport of SapphireRapids CPU Models (jsc#PED-8113):
  * target/i386: add support for VMX_SECONDARY_EXEC_ENABLE_USER_WAIT_PAUSE
  * target/i386: Export MSR_ARCH_CAPABILITIES bits to guests
  * docs: re-generate x86_64 ABI compatibility CSV
  * target/i386: Add new CPU model GraniteRapids
  * target/i386: Add few security fix bits in ARCH_CAPABILITIES into SapphireRapids CPU model
  * target/i386: Add new bit definitions of MSR_IA32_ARCH_CAPABILITIES
  * target/i386: Allow MCDT_NO if host supports
  * target/i386: Add support for MCDT_NO in CPUID enumeration
  * target/i386: Adjust feature level according to FEAT_7_1_EDX
  * target/i386: Add support for PREFETCHIT0/1 in CPUID enumeration
  * target/i386: Add support for AVX-NE-CONVERT in CPUID enumeration
  * target/i386: Add support for AVX-VNNI-INT8 in CPUID enumeration
  * target/i386: Add support for AVX-IFMA in CPUID enumeration
  * target/i386: Add support for AMX-FP16 in CPUID enumeration
  * target/i386: Add support for CMPCCXADD in CPUID enumeration
  * target/i386: add support for FB_CLEAR feature
  * target/i386: add support for FLUSH_L1D feature
  * i386: Add new CPU model SapphireRapids
  * target/i386: KVM: allow fast string operations if host supports them
  * target/i386: add FZRM, FSRS, FSRC
  * target/i386: add FSRM to TCG
- Backport of EPYC-Genoa CPU Model (jsc#PED-7366):
  * target/i386: Add EPYC-Genoa model to support Zen 4 processor series
  * target/i386: Add VNMI and automatic IBRS feature bits
  * target/i386: Add missing feature bits in EPYC-Milan model
  * target/i386: Add feature bits for CPUID_Fn80000021_EAX
  * target/i386: Add a couple of feature bits in 8000_0008_EBX
  * target/i386: Add new EPYC CPU versions with updated cache_info
  * target/i386: allow versioned CPUs to specify new cache_info