On 06.02.2018 20:14, Michael Roth wrote:
> Hi everyone,
>
>
> The following new patches are queued for QEMU stable v2.11.1:
>
> https://github.com/mdroth/qemu/commits/stable-2.11-staging
>
> The release is planned for 2017-02-14:
>
> https://wiki.qemu.org/Planning/2.11
>
> Please respond here or CC qemu-sta...@nongnu.org on any patches you
> think should be included in the release.
Looking for "CVE" in the changelog, these look like good candidates for
stable as well:
191f59dc17396bb5a8da50f8c59b6e0a430711a4
vga: check the validation of memory addr when draw text
f887cf165db20f405cb8805c716bd363aaadf815
ui: place a hard cap on VNC server output buffer size
(and the preceding patches)
> Of particular importance would be any feedback on the various QEMU
> patches relating to Spectre/Meltdown mitigation. The current tree has
> what I understand to be the QEMU components required for x86, s390,
> and pseries, but feedback/confirmation from the various authors would
> be greatly appreciated.
[...]
> Christian Borntraeger (2):
> s390x/kvm: Handle bpb feature
> s390x/kvm: provide stfle.81
Confirmed, AFAIK that are the only two patches that are required for
Spectre on s390x (together with the linux-headers update).
Thomas
