>> So there's *another* escalation through Qemu/HVM to backport. I wonder >> if it's worth postponing this upload? By the looks of things that only affects HVM mode and only with a non-default video adapter.
I think the other patches actually being released is more important in short-term. Be aware there is another XSA-176 in embargo at the moment, anyway, bay be best to sort that out at same time, in the (suggested) "next week" ... http://xenbits.xen.org/xsa/ > I think it might be worth uploading what he have, and then fixing this > security issue in another upload. +1 to that idea =). Important this change to 4.1.6.1 gets used and tested for regressions over the debian 4.1.4 version anyway, thats' a substantial change unto itself anyway? Hope that helps, --Simon
