GNU bug report logs - #39225
[PATCH 0/2] QEMU updates

Previous Next

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 39225 in the body.
You can then email your comments to 39225 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Leo Famulari <leo <at> famulari.name>
To: guix-patches <at> gnu.org
Subject: [PATCH 0/2] QEMU updates
Date: Tue, 21 Jan 2020 13:55:50 -0500

The security updates work with our current QEMU package of 4.1.1 as well
as 4.2.0.

I tested both 4.2.0 and the patched 4.1.1 by creating a vm-image and
running it with the "full" QEMU package, and the SLIRP networking works
fine in both cases.

Leo Famulari (2):
  gnu: QEMU: Fix CVE-2020-{7039,7211}.
  gnu: QEMU: Update to 4.2.0.

 gnu/local.mk                                  |   3 +
 gnu/packages/patches/qemu-CVE-2020-7039.patch | 173 ++++++++++++++++++
 gnu/packages/patches/qemu-CVE-2020-7211.patch |  49 +++++
 ...qemu-fix-documentation-build-failure.patch |  43 +++++
 gnu/packages/virtualization.scm               |   7 +-
 5 files changed, 273 insertions(+), 2 deletions(-)
 create mode 100644 gnu/packages/patches/qemu-CVE-2020-7039.patch
 create mode 100644 gnu/packages/patches/qemu-CVE-2020-7211.patch
 create mode 100644 gnu/packages/patches/qemu-fix-documentation-build-failure.patch

-- 
2.25.0

Message #12 received at 39225 <at> debbugs.gnu.org (full text, mbox):

From: Tobias Geerinckx-Rice <me <at> tobias.gr>
To: 39225 <at> debbugs.gnu.org
Cc: Leo Famulari <leo <at> famulari.name>
Subject: Re: [bug#39225] [PATCH 0/2] QEMU updates
Date: Tue, 21 Jan 2020 21:14:40 +0100

[Message part 1 (text/plain, inline)]

Leo,

Leo Famulari 写道：
> The security updates work with our current QEMU package of 4.1.1 
> as well
> as 4.2.0.
>
> I tested both 4.2.0 and the patched 4.1.1 by creating a vm-image 
> and
> running it with the "full" QEMU package, and the SLIRP 
> networking works
> fine in both cases.

Have you run the Guix System test suite with this new Qemu?

Both patches LGTM.  Thanks!

T G-R

[signature.asc (application/pgp-signature, inline)]

Message #15 received at 39225 <at> debbugs.gnu.org (full text, mbox):

From: Leo Famulari <leo <at> famulari.name>
To: Tobias Geerinckx-Rice <me <at> tobias.gr>
Cc: 39225 <at> debbugs.gnu.org
Subject: Re: [bug#39225] [PATCH 0/2] QEMU updates
Date: Tue, 21 Jan 2020 16:52:19 -0500

[Message part 1 (text/plain, inline)]

On Tue, Jan 21, 2020 at 09:14:40PM +0100, Tobias Geerinckx-Rice wrote:
> Have you run the Guix System test suite with this new Qemu?

The basic and openssh tests did pass. I don't have the computing
resources or time to continue testing it. Can we use Cuirass on
<ci.guix.gnu.org> to test it more fully?

[signature.asc (application/pgp-signature, inline)]

Message #20 received at 39225-done <at> debbugs.gnu.org (full text, mbox):

From: Leo Famulari <leo <at> famulari.name>
To: 39225-done <at> debbugs.gnu.org
Subject: Re: [PATCH 0/2] QEMU updates
Date: Fri, 24 Jan 2020 21:13:59 -0500

[Message part 1 (text/plain, inline)]

On Tue, Jan 21, 2020 at 01:55:50PM -0500, Leo Famulari wrote:
> The security updates work with our current QEMU package of 4.1.1 as well
> as 4.2.0.
> 
> I tested both 4.2.0 and the patched 4.1.1 by creating a vm-image and
> running it with the "full" QEMU package, and the SLIRP networking works
> fine in both cases.

Pushed as 3778b3d9d013a443eec7990c31f47f887f72fe59, along with a 3rd
patch that brings back the QEMU man pages. QEMU 4.0 began requiring the
use of Sphinx to build them:

https://wiki.qemu.org/ChangeLog/4.0#Build_Dependencies

[signature.asc (application/pgp-signature, inline)]

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.