[CentOS-virt] Xen Security patching
Chris Elliott
chris at chriselliott.info
Wed Nov 27 17:17:22 UTC 2013
I've used these on a few systems now with various hardware and not had any issues so looks good for production if everyone else is happy.
--
Kind Regards,
Chris E.
_____
________________________________________
From: centos-virt-bounces at centos.org [centos-virt-bounces at centos.org] On Behalf Of Johnny Hughes [johnny at centos.org]
Sent: 23 November 2013 15:52
To: centos-virt at centos.org
Subject: Re: [CentOS-virt] Xen Security patching
On 11/23/2013 09:37 AM, Johnny Hughes wrote:
> On 11/23/2013 06:33 AM, Johnny Hughes wrote:
>> On 11/23/2013 06:24 AM, Johnny Hughes wrote:
>>> On 11/22/2013 01:12 PM, Chris Elliott wrote:
>>>> Hi Guys
>>>>
>>>> When is the next update of Hypervisor packages going to be released?
>>>>
>>>> There appears to be no changes to the main hypervisor RPMs since
>>>> September (Even in the BETA / RC1 tree) and there are 5+ Xen Security
>>>> Advisories with patches which need to be added.
>>>>
>>>> “Security issues are handled and released in sync with public
>>>> disclosure upstream with zero lag”
>>>>
>>>> I can rebuild my own, but that’s not really the point. In other news
>>>> I’ve been doing some testing of the 3.10 kernel and so far so good!
>>>>
>>> That is not true ...
>>>
>>> I updated testing RPMS into the rc1 tree and announced it here:
>>>
>>> http://lists.centos.org/pipermail/centos-virt/2013-November/003485.html
>>>
>>> If I can get at least one or 2 people to tell me this works, I'll push it.
>>>
>>> Thanks,
>>> Johnny Hughes
>> By not true, I mean that all XSAs that are applicable up to xsa-72 are
>> in the xen-4.2.3-24 RPMS in the RC1 repo right now. I have gotten 0
>> feedback since I released them. (xsa-62 through xsa-72)
>>
>> xsa-73, xsa-75, xsa-78 can be released now, but they are very new.
> OK, a newer version of xen-4.2.3-25 now exists in xen-RC-1 ... this
> includes xsa-73, xsa-75, and xsa-78
>
> Please test and provide feedback so we can move these to production.
>
I have just updated my production xen dom0 machines to this version, and
I am not seeing any issues. I don't necessarily recommend that for
everyone, but can we get some feedback from xen4centos6 users so we can
move these to production.
The repo is at for those who need the info:
http://dev.centos.org/centos/6/xen-c6-RC1/
Thanks,
Johnny Hughes
More information about the CentOS-virt
mailing list