Changelog for ocaml-xen-debuginfo-4.12.1-1.mga7.x86_64.rpm :

* Wed Nov 27 2019 tv 4.12.1-1.mga7+ Revision: 1463170- new release- Device quarantine for alternate pci assignment methods [XSA-306]- x86: Machine Check Error on Page Size Change DoS [XSA-304, CVE-2018-12207]- TSX Asynchronous Abort speculative side channel [XSA-305, CVE-2019-11135]- VCPUOP_initialise DoS [XSA-296, CVE-2019-18420] (rhbz#1771368)- missing descriptor table limit checking in x86 PV emulation [XSA-298, CVE-2019-18425] (rhbz#1771341)- Issues with restartable PV type change operations [XSA-299, CVE-2019-18421] (rhbz#1767726)- add-to-physmap can be abused to DoS Arm hosts [XSA-301, CVE-2019-18423] (rhbz#1771345)- passed through PCI devices may corrupt host memory after deassignment [XSA-302, CVE-2019-18424] (rhbz#1767731)- ARM: Interrupts are unconditionally unmasked in exception handlers [XSA-303, CVE-2019-18422] (rhbz#1771443)- Unlimited Arm Atomics Operations [XSA-295, CVE-2019-17349, CVE-2019-17350] (rhbz#1720760)- fix HVM DomU boot on some chipsets- adjust grub2 workaround
* Wed May 15 2019 tv 4.12.0-2.mga7+ Revision: 1397871- Microarchitectural Data Sampling speculative side channel [XSA-297, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091]- additional patches so above applies cleanly
* Sun Apr 14 2019 tv 4.12.0-1.mga7+ Revision: 1389949- reeable i586 but disable cross compiling hypervisor for now- fix filelist for aarch64- temporary disable i586- update to 4.12.0- remove patches for issues now fixed upstream- replace xen.use.fedora.ipxe.patch with --with-system-ipxe- drop xen.glibcfix.patch xen.gcc8.temp.fix.patch which are no longer needed- rediff patches- xen.hypervisor.config refresh- kdd is now xen-kdd, is now xenmon, is now fs libdir is now xenfsimage libdir- xen-ringwatch xen-bugtool have been dropped- remove remaining traces of efiming and efi_flags logic- switch from python2 to python3
* Wed Mar 06 2019 tv 4.11.1-1.mga7+ Revision: 1372036- enable to disable building docs- update to 4.11.1- construct ovmf.bin from edk2-ovmf package (rhbz#1656651)- xen: various flaws (rhbz#1685577) grant table transfer issues on large hosts [XSA-284] race with pass-through device hotplug [XSA-285] x86: steal_page violates page_struct access discipline [XSA-287] x86: Inconsistent PV IOMMU discipline [XSA-288] missing preemption in x86 PV page table unvalidation [XSA-290] x86/PV: page type reference counting issue with failed IOMMU update [XSA-291] x86: insufficient TLB flushing when using PCID [XSA-292] x86: PV kernel context switch corruption [XSA-293] x86 shadow: Insufficient TLB flushing when using PCID [XSA-294] remove patches for issues now fixed upstream adjust xen.use.fedora.ipxe.patch
* Thu Nov 22 2018 tv 4.11.0-9.mga7+ Revision: 1333165- insufficient TLB flushing / improper large page mappings with AMD IOMMUs [XSA-275] (#1651665)- x86: DoS from attempting to use INVPCID with a non-canonical addresses [XSA-279] (#1651970)- xen: various flaws (#1652251) resource accounting issues in x86 IOREQ server handling [XSA-276] x86: incorrect error handling for guest p2m page removals [XSA-277] Fix for XSA-240 conflicts with shadow paging [XSA-280]
* Wed Nov 07 2018 tv 4.11.0-8.mga7+ Revision: 1328822- guest use of HLE constructs may lock up host [XSA-282]
* Sat Nov 03 2018 pterjan 4.11.0-7.mga7+ Revision: 1327850- Only require grub on architectures where it exists- Kill old Requires on glibc-xen
* Tue Oct 30 2018 tv 4.11.0-6.mga7+ Revision: 1326740- x86: Nested VT-x usable even when disabled [XSA-278, CVE-2018-18883] (rhbz#1643118)
* Thu Oct 25 2018 wally 4.11.0-5.mga7+ Revision: 1325485- fix build on i586- update file list for arm/aarch64+ daviddavid - rebuild for new ocaml 4.07.1+ tv - set /usr/bin/python2 at the start of another python script- reenable EFI images now that we\'ve fixed binutils- BR libfdt-devel on arm
* Thu Sep 13 2018 tv 4.11.0-2.mga7+ Revision: 1258876- temporary unlist missing efi images- set properly libexecdir on ix86- sync patches with FC- fix build on ix86- 4.11.0- replace use of deprecated brctl command (rhbz#1588712)- Speculative register leakage from lazy FPU context switching
* Thu May 31 2018 tv 4.10.1-2.mga7+ Revision: 1233265- fix build with glibc 2.27- Speculative Store Bypass [XSA-263, CVE-2018-3639] (with extra patches so it applies cleanly)
* Wed May 09 2018 tv 4.10.1-1.mga7+ Revision: 1227910- 4.10.1- make doc noarch
* Thu Feb 01 2018 tv 4.10.0-2.mga7+ Revision: 1198465- try harder to have a cross build for ix86- fix ix86 build- sync patches with FC- new release