Overview

File _patchinfo of Package patchinfo.19587

<patchinfo incident="19587">
  <issue tracker="bnc" id="1185021">regression: xenstored fails to start because systemd loses track of child processes ("daemon" case)</issue>
  <issue tracker="bnc" id="1185682">fillup corrupts sysconfig files</issue>
  <issue tracker="bnc" id="1185104">VUL-0: CVE-2021-28689: xen: x86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests (XSA-370)</issue>
  <issue tracker="bnc" id="1183790">Systemd unit setting "Restart=on-abort" is not respected based on the exit status of "Main process"</issue>
  <issue tracker="bnc" id="1185196">PTF request for bug 1185021 comment 7 for sles12sp5  XEN breaks after upgrade</issue>
  <issue tracker="cve" id="2021-28689"/>
  <packager>charlesa</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for xen</summary>
  <description>This update for xen fixes the following issues:

Security issue fixed:

- CVE-2021-28689: Fixed some x86 speculative vulnerabilities with bare (non-shim) 32-bit PV guests (XSA-370) (bsc#1185104)

- Make sure xencommons is in a format as expected by fillup. (bsc#1185682)

  Each comment needs to be followed by an enabled key. Otherwise
  fillup will remove manually enabled key=value pairs, along with
  everything that looks like a stale comment, during next pkg update

- A recent systemd update caused a regression in xenstored.service
  systemd now fails to track units that use systemd-notify (bsc#1183790)
- Added a delay between the call to systemd-notify and the final exit
  of the wrapper script (bsc#1185021, bsc#1185196)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places