mirror of https://gitee.com/openkylin/libvirt.git
news: Update for 5.4.0 release
Signed-off-by: Andrea Bolognani <abologna@redhat.com> Acked-by: Michal Privoznik <mprivozn@redhat.com>
This commit is contained in:
parent
61c1e5e007
commit
4c7b5cdb16
|
@ -42,7 +42,60 @@
|
||||||
<release version="v5.4.0" date="unreleased">
|
<release version="v5.4.0" date="unreleased">
|
||||||
<section title="New features">
|
<section title="New features">
|
||||||
</section>
|
</section>
|
||||||
|
<section title="Security">
|
||||||
|
<change>
|
||||||
|
<summary>
|
||||||
|
cpu: Introduce support for the md-clear CPUID bit
|
||||||
|
</summary>
|
||||||
|
<description>
|
||||||
|
This bit is set when microcode provides the mechanism to invoke a
|
||||||
|
flush of various exploitable CPU buffers by invoking the x86
|
||||||
|
<code>VERW</code> instruction. CVE-2018-12126, CVE-2018-12127,
|
||||||
|
CVE-2018-12130, CVE-2019-11091.
|
||||||
|
</description>
|
||||||
|
</change>
|
||||||
|
<change>
|
||||||
|
<summary>
|
||||||
|
Restrict user access to virt-admin, virtlogd and virtlockd
|
||||||
|
</summary>
|
||||||
|
<description>
|
||||||
|
The intended users for these facilities are the <code>root</code>
|
||||||
|
user and the <code>libvirtd</code> service respectively, but these
|
||||||
|
restrictions were not enforced correctly. CVE-2019-10132.
|
||||||
|
</description>
|
||||||
|
</change>
|
||||||
|
</section>
|
||||||
<section title="Improvements">
|
<section title="Improvements">
|
||||||
|
<change>
|
||||||
|
<summary>
|
||||||
|
test driver: Expand API coverage
|
||||||
|
</summary>
|
||||||
|
<description>
|
||||||
|
Several APIs that were missing from the test driver have now been
|
||||||
|
implemented.
|
||||||
|
</description>
|
||||||
|
</change>
|
||||||
|
<change>
|
||||||
|
<summary>
|
||||||
|
Avoid unnecessary static linking
|
||||||
|
</summary>
|
||||||
|
<description>
|
||||||
|
Most binaries shipped as part of libvirt, for example
|
||||||
|
<code>virtlogd</code> and <code>libvirt_iohelper</code>, were
|
||||||
|
embedding parts of the library even though they also linked against
|
||||||
|
the <code>libvirt.so</code> dynamic library. This is no longer the
|
||||||
|
case, which results in both the disk and memory footprint being
|
||||||
|
reduced.
|
||||||
|
</description>
|
||||||
|
</change>
|
||||||
|
<change>
|
||||||
|
<summary>
|
||||||
|
qemu: Report stat-htlb-pgalloc and stat-htlb-pgfail balloon stats
|
||||||
|
</summary>
|
||||||
|
<description>
|
||||||
|
These stats have been introduced in QEMU 3.0.
|
||||||
|
</description>
|
||||||
|
</change>
|
||||||
</section>
|
</section>
|
||||||
<section title="Bug fixes">
|
<section title="Bug fixes">
|
||||||
<change>
|
<change>
|
||||||
|
@ -58,6 +111,11 @@
|
||||||
scheduler for the main thread is set after QEMU starts.
|
scheduler for the main thread is set after QEMU starts.
|
||||||
</description>
|
</description>
|
||||||
</change>
|
</change>
|
||||||
|
<change>
|
||||||
|
<summary>
|
||||||
|
apparmor: Allow hotplug of vhost-scsi devices
|
||||||
|
</summary>
|
||||||
|
</change>
|
||||||
</section>
|
</section>
|
||||||
</release>
|
</release>
|
||||||
<release version="v5.3.0" date="2019-05-04">
|
<release version="v5.3.0" date="2019-05-04">
|
||||||
|
|
Loading…
Reference in New Issue