Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/app-emulation/qemu/files
Commit message (Collapse)AuthorAgeFilesLines
* app-emulation/qemu: fix aarch64 tcg simd crashJason A. Donenfeld2018-07-231-0/+36
| | | | | | | | | | QEMU mailing list thread is here: https://marc.info/?l=qemu-devel&m=153229252602494&w=2 The patch is here: https://marc.info/?l=qemu-devel&m=153230940005574&w=2 Package-Manager: Portage-2.3.43, Repoman-2.3.10
* app-emulation/qemu: rearrange patchesMatthias Maier2018-06-151-183/+0
| | | | Package-Manager: Portage-2.3.40, Repoman-2.3.9
* app-emulation/qemu: fix major TCG crashJason A. Donenfeld2018-06-151-0/+183
| | | | | | This is a custom backport of a patch being prepared for 2.12.1. Package-Manager: Portage-2.3.40, Repoman-2.3.9
* app-emulation/qemu: remove unused patchMichael Mair-Keimberger2018-03-291-24/+0
| | | | Closes: https://github.com/gentoo/gentoo/pull/7686
* app-emulation/qemu: Revert: add rule to fix permissions on /dev/vfio/vfioMatthias Maier2018-03-271-2/+0
| | | | This reverts commit 2fc1bc6c7b1f41a3a7df74ce8e170996eb7e36d9.
* app-emulation/qemu: add rule to fix permissions on /dev/vfio/vfioMatthias Maier2018-03-271-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The device node /dev/vfio/vfio gets created on modprobing the vfio* modules. This happens in particular on demand when a qemu vm with PCI passthrough is started up. The default permissios for the freshly created device node is crw-rw-rw- 1 root root 10, 196 Mar 27 08:44 /dev/vfio/vfio This is terrible. This patch adds an udev rules and makes sure that the device node has rw permissions for user root, and group kvm (and no permissions for all). This fixes - startup when a qemu-kvm is started as non-root (provided the user is in group kvm, which is our current policy for accessing /dev/kvm, etc., anyway). - work around this security vulnerability, where /dev/vfio/vfio is created with world writable permissions upon modprobe. [1] Thanks to username234, Kash Pande, Ted Rodgers for discovery and patch! [1] Steps to reproduce: % ls -la /dev/vfio/vfio crw------- 1 root root 10, 196 Mar 27 15:40 /dev/vfio/vfio % modprobe vfio % ls -la /dev/vfio/vfio crw-rw-rw- 1 root root 10, 196 Mar 27 15:41 /dev/vfio/vfio [2] I cannot find an udev rule installed by libvirt/qemu/... that triggers these permissions. Bug: https://bugs.gentoo.org/651668 Package-Manager: Portage-2.3.24, Repoman-2.3.6 RepoMan-Options: --force
* app-emulation/qemu: drop obsolete fileMatthias Maier2018-03-271-1/+0
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: 2.11.1: New binary blob pinning, CVE patches, maintenanceMatthias Maier2018-03-181-0/+11
| | | | | | | | | | | | | | | | | | | * new binary blobs pinning =sys-firmware/edk2-ovmf-2017_p20180211 =sys-firmware/ipxe-1.0.0_p20180211 =sys-firmware/seabios-1.11.0 =sys-firmware/sgabios-0.1_pre8-r1 =sys-firmware/vgabios-0.7a-r1 keyword ebuild * fix include path for capstone, bug 647570 * add USE=capstone support, bug 647570 * apply patch for CVE-2018-7550 Closes: https://bugs.gentoo.org/647570 Bug: https://bugs.gentoo.org/649616 Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: drop vulnerable versionMatthias Maier2018-02-122-112/+0
| | | | | Bug: https://bugs.gentoo.org/646814 Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: Fix build with latest git:Alexey Sokolov2018-02-111-0/+24
| | | | | | | | | * add hppa to softmmu targets * add aarch64_be to user targets * update the CFLAGS patch Signed-off-by: Matthias Maier <tamiko@gentoo.org> Closes: https://github.com/gentoo/gentoo/pull/7020
* app-emulation/qemu: version bump to 2.11.0, important security fixesMatthias Maier2018-02-111-0/+54
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Added slot operator for libnfs - Added patch for glibc-2.27 compatibility - Added patch for CVE-2017-16845 - Backported upstream msr / spec ctrl patches: 6cfbc54e89 i386: Add EPYC-IBPB CPU model ac96c41354 i386: Add new -IBRS versions of Intel CPU models 1b3420e1c4 i386: Add FEAT_8000_0008_EBX CPUID feature word a2381f0934 i386: Add spec-ctrl CPUID bit a33a2cfe2f i386: Add support for SPEC_CTRL MSR - CVEs addressed by bump: CVE-2017-17381 CVE-2017-18030 CVE-2017-18043 - CVEs addressed by patchset: CVE-2017-15124 CVE-2017-16845 CVE-2018-5683 - CVE-2018-5748 is a libvirt vulnerability, not a qemu issue... Bug: https://bugs.gentoo.org/638506 Bug: https://bugs.gentoo.org/643432 Bug: https://bugs.gentoo.org/646814 Closes: https://bugs.gentoo.org/641100 Closes: https://bugs.gentoo.org/646568 Closes: https://bugs.gentoo.org/646710 Package-Manager: Portage-2.3.24, Repoman-2.3.6
* app-emulation/qemu: remove unused fileMichael Mair-Keimberger2017-12-061-138/+0
| | | | Closes: https://github.com/gentoo/gentoo/pull/6419
* app-emulation/qemu: Version bump to 2.10.1, various security fixesMatthias Maier2017-11-123-80/+112
| | | | | | | | Bug: https://bugs.gentoo.org/630432 Bug: https://bugs.gentoo.org/633822 Bug: https://bugs.gentoo.org/634070 Bug: https://bugs.gentoo.org/634148 Package-Manager: Portage-2.3.8, Repoman-2.3.4
* app-emulation/qemu: drop obsolete patchesMatthias Maier2017-11-1213-1007/+0
| | | | Package-Manager: Portage-2.3.8, Repoman-2.3.4
* app-emulation/qemu: version bump to 2.10.0, bug #629350Matthias Maier2017-08-311-0/+80
| | | | | | | | | This version bump also addresses a number of security issues CVE-2017-12809, bug #628498 CVE-2017-13673, bug #629316 CVE-2017-13711, bug #629350 Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: Remove faulty patchMatthias Maier2017-07-261-601/+0
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: Bugfix: Fix patch fileMatthias Maier2017-07-261-11/+11
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: security patchesMatthias Maier2017-07-263-52/+478
| | | | | | | | CVE-2017-7539, bug #625850 CVE-2017-10664, bug #623016 CVE-2017-10806, bug #624088 Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: drop old patch filesMatthias Maier2017-07-2625-1202/+0
| | | | Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: security fixesMatthias Maier2017-07-267-0/+854
| | | | | | | | | CVE-2017-11334, bug #621292 CVE-2017-11434, bug #625614 CVE-2017-9503, bug #621184 CVE-2017-9524, bug #621292 Package-Manager: Portage-2.3.6, Repoman-2.3.3
* app-emulation/qemu: rename patchesMatthias Maier2017-05-173-0/+0
| | | | Package-Manager: Portage-2.3.5, Repoman-2.3.2
* app-emulation/qemu: patch for CVE-2017-7493, bug #618808Matthias Maier2017-05-171-0/+174
| | | | Package-Manager: Portage-2.3.5, Repoman-2.3.2
* app-emulation/qemu: Various security patches for 2.9.0Matthias Maier2017-04-294-0/+154
| | | | | | | | | | | | bug 616636, CVE-2017-8112 bug 616870 [1] bug 616872 [2] bug 616874 [1] [1] minor change, queued upstream, no CVE assigned yet [2] queued upstream, no CVE assigned yet Package-Manager: Portage-2.3.3, Repoman-2.3.2
* app-emulation/qemu: security fixesMatthias Maier2017-04-252-0/+92
| | | | | | | | | | | | | | | CVE-2017-7471, bug #616484 CVE-2017-7718, bug #616482 already applied on stable-2.8 as 3328c14e63f08fb07e8c6dec779c9d365e9e9864 CVE-2017-7980, bug #616462 already applied on stable-2.8 as a290442234fa214fcb7f45fc91d802bcb8d05c4b 031700e4527b9e05798f7040dccdf638da27aee2 CVE-2017-8086, bug #616460 Package-Manager: Portage-2.3.5, Repoman-2.3.2
* app-emulation/qemu: apply patch for CVE-2017-7377, bug #614744Matthias Maier2017-04-121-0/+49
| | | | Package-Manager: Portage-2.3.5, Repoman-2.3.2
* app-emulation/qemu: security patches, bug #612220Matthias Maier2017-03-261-0/+52
| | | | | | CVE-2017-6505, bug #612220 Package-Manager: Portage-2.3.3, Repoman-2.3.2
* Drop remaining $Id$ and $Header$ from files.Ulrich Müller2017-02-281-1/+0
| | | | Bug: 611234
* app-emulation/qemu: security fixes, notably CVE-2017-2620, bug #609206Matthias Maier2017-02-215-0/+327
| | | | | | | | | | | This commit applies a number of patches fixing CVE-2017-2620 #609206 CVE-2017-2630 #609396 CVE-2017-5973 #609334 CVE-2017-5987 #609398 CVE-2017-6058 #609638 Package-Manager: Portage-2.3.3, Repoman-2.3.1
* app-emulation/qemu: fix permissions on vhost-net, bug #593196Matthias Maier2017-02-131-0/+2
| | | | | | | Add an additional udev rule that grants access to /dev/vhost-net to the kvm user. Package-Manager: Portage-2.3.3, Repoman-2.3.1
* app-emulation/qemu: fix various security issues, bug #608728 and othersMatthias Maier2017-02-1212-0/+537
| | | | | | | | | | | | | | | | | | This commit applies upstream patches to 2.8.0 for the following CVEs CVE-2016-10155 #606720 CVE-2017-2615 #608034 CVE-2017-5525 #606264 CVE-2017-5552 #606722 CVE-2017-5578 #607000 CVE-2017-5579 #607100 CVE-2017-5667 #607766 CVE-2017-5856 #608036 CVE-2017-5857 #608038 CVE-2017-5898 #608520 CVE-2017-5931 #608728 Package-Manager: Portage-2.3.3, Repoman-2.3.1
* app-emulation/qemu: drop old versions 2.7.0, 2.7.1Matthias Maier2017-02-1227-1042/+0
| | | | Package-Manager: Portage-2.3.3, Repoman-2.3.1
* app-emulation/qemu: generate init.d script from upstream settingsMike Frysinger2017-01-202-0/+78
|
* app-emulation/qemu: version bump to 2.8.0Mike Frysinger2016-12-293-0/+113
|
* app-emulation/qemu: version bump to 2.7.1Mike Frysinger2016-12-292-24/+26
| | | | | | Update the 7422 patch to match the version upstream merged. Update the 8669-1 patch to include upstream references since it is still not merged/fixed.
* app-emulation/qemu: security fixes, bug #598772Matthias Maier2016-11-125-0/+192
| | | | | | | | | | CVE-2016-9102, bug #598328 CVE-2016-9103, bug #598328 CVE-2016-9104, bug #598328 CVE-2016-9105, bug #598328 CVE-2016-9106, bug #598772 Package-Manager: portage-2.3.0
* app-emulation/qemu: multiple security fixes for 2.7.0-r5Matthias Maier2016-10-2613-0/+486
| | | | | | | | | | | | | | | | | | | CVE-2016-7466, bug 594520 CVE-2016-7907, bug 596048 CVE-2016-7908, bug 596049 CVE-2016-7909, bug 596048 CVE-2016-7994, bug 596738 CVE-2016-7994, bug 596738 CVE-2016-8576, bug 596752 CVE-2016-8577, bug 596776 CVE-2016-8578, bug 596774 CVE-2016-8668, bug 597110 CVE-2016-8669, bug 597108 CVE-2016-8669, bug 597108 CVE-2016-8909, bug 598044 CVE-2016-8910, bug 598046 Package-Manager: portage-2.3.0
* app-emulation/qemu: security fixes, bug #594520, bug #594368Matthias Maier2016-09-262-0/+57
| | | | | | | CVE-2016-7466.patch # bug 594520 CVE-2016-7423.patch # bug 594368 Package-Manager: portage-2.3.0
* app-emulation/qemu: security fixes, ebuild maintenanceMatthias Maier2016-09-172-0/+72
| | | | | | | | | bug 593956: CVE-2016-7422 bug 593950: CVE-2016-7421 bug 590230: missing use depend opengl? ( media-libs/mesa[...,gbm] ) bug 575326: update to readme.gentoo-r1 eclass Package-Manager: portage-2.2.28
* app-emulation/qemu: apply fix for CVE-2016-7170, bug #593284Matthias Maier2016-09-091-0/+40
| | | | Package-Manager: portage-2.2.28
* app-emulation/qemu: fix static-user dep, security patches, bug #593038Matthias Maier2016-09-094-0/+198
| | | | | | | | | | | | This commit resolves bug #591202 bug #593024 bug #593034 CVE-2016-7155 bug #593036 CVE-2016-7156 bug #593038 CVE-2016-7157 Package-Manager: portage-2.2.28
* app-emulation/qemu: drop vulnerable 2.5.1, bug #592430, and 19 othersMatthias Maier2016-09-0510-915/+0
| | | | Package-Manager: portage-2.2.28
* app-emulation/qemu: drop obsolete patchesMatthias Maier2016-09-0517-943/+0
| | | | Package-Manager: portage-2.2.28
* app-emulation/qemu: apply patch for CVE-2016-6836, bug #591242Matthias Maier2016-09-051-0/+27
| | | | Package-Manager: portage-2.2.28
* app-emulation/qemu: Update ppc magic maskLuca Barbato2016-08-151-2/+2
| | | | | | Unbreak using qemu-user with current stage3. Package-Manager: portage-2.3.0
* app-emulation/qemu: Drop a -Werror when it could cause a false positiveLuca Barbato2016-08-071-0/+11
| | | | | | The check code could trigger recent compiler warnings. Package-Manager: portage-2.2.26
* app-emulation/qemu: fix static linking errors w/curl[ssl,curl_ssl_openssl]Mike Frysinger2016-06-061-0/+60
|
* app-emulation/qemu: use #!/sbin/openrc-run instead of #!/sbin/runscriptAustin English2016-05-181-1/+1
|
* app-emulation/qemu: workaround breakage in xfs/linux headers #577810Mike Frysinger2016-05-171-0/+82
| | | | | | Add upstream patch to workaround some combinations of xfsprogs & linux headers so we don't have to worry about stable breakage anymore. This fix is already in upstream & unstable versions.
* app-misc/qemu: version bump & bug fixes #579614 #580040 #580426Mike Frysinger2016-04-233-0/+170
|
* app-emulation/qemu: add few more upstream fixes #573816 #578142Mike Frysinger2016-03-282-0/+71
|