Downloads

Xen Project 4.9.4

We are pleased to announce the release of Xen 4.9.4. This is available immediately from its git repository 

https://xenbits.xenproject.org/gitweb/?p=xen.git;a=shortlog;h=refs/heads/stable-4.9 (tag RELEASE-4.9.4) or from this download page

This release contains the following bug-fixes and improvements in the Xen Project hypervisor:

  • f5acf97f66: update Xen version to 4.9.4 [Jan Beulich]
  • 54aa382cbc: x86emul/test: fix build after “x86emul: fix 3-operand IMUL” [Jan Beulich]
  • 04f7fbcc8f: x86/hvm: Fix bit checking for CR4 and MSR_EFER [Andrew Cooper]
  • 9f1b0e609e: x86/AMD: flush TLB after ucode update [Jan Beulich]
  • b366d29102: mm/page_alloc: fix MEMF_no_dma allocations for single NUMA [Sergey Dyasli]
  • 8b799b1b33: x86emul: work around SandyBridge errata [Jan Beulich]
  • 678920e584: x86emul: fix 3-operand IMUL [Jan Beulich]
  • 3a3f48a59e: x86/hvm: Corrections to RDTSCP intercept handling [Andrew Cooper]
  • 4f9a486899: x86/VT-x: Don’t activate VMCS Shadowing outside of nested vmx mode [Andrew Cooper]
  • 78b2732ec5: x86/shadow: don’t enable shadow mode with too small a shadow allocation [Jan Beulich]
  • 840b5233f5: ns16550/PCI: fix skipping of devices [Jan Beulich]
  • 194142fff3: x86/soft-reset: Drop gfn reference after calling get_gfn_query() [Andrew Cooper]
  • e2707415ae: x86/mem-sharing: Don’t leave the altp2m lock held when nominating a page [Andrew Cooper]
  • ed4f0e8393: x86/HVM: __hvm_copy() should not write to p2m_ioreq_server pages [Jan Beulich]
  • fd6ab0e87e: VMX: fix vmx_handle_eoi() [Jan Beulich]
  • 0437ba0e57: xen/arm: vgic-v3: Don’t create empty re-distributor regions [Julien Grall]
  • 19fc44f4a1: xen/arm: vgic-v3: Delay the initialization of the domain information [Julien Grall]
  • 97b37e342b: xen/arm: check for multiboot nodes only under /chosen [Stefano Stabellini]
  • 2d57b55a0d: xen/arm: gic: Ensure ordering between read of INTACK and shared data [Julien Grall]
  • a3b22eb0c4: xen/arm: gic: Ensure we have an ISB between ack and do_IRQ() [Julien Grall]
  • 7f01558d9b: VMX: allow migration of guests with SSBD enabled [Jan Beulich]
  • e43f2ca943: x86/dom0: Fix shadowing of PV guests with 2M superpages [Andrew Cooper]
  • 0864dd8181: x86/dom0: Avoid using 1G superpages if shadowing may be necessary [Andrew Cooper]
  • ca5ede6397: x86/shadow: shrink struct page_info’s shadow_flags to 16 bits [Jan Beulich]
  • d96e6290c2: x86/shadow: move OOS flag bit positions [Jan Beulich]
  • d819a65bbc: x86/mm: Don’t perform flush after failing to update a guests L1e [Andrew Cooper]
  • 15b4ee94be: AMD/IOMMU: suppress PTE merging after initial table creation [Jan Beulich]
  • f97a1d1375: amd/iommu: fix flush checks [Roger Pau Monné]
  • f13983db12: stubdom/vtpm: fix memcmp in TPM_ChangeAuthAsymFinish [Olaf Hering]
  • 8d6f2134fb: x86: work around HLE host lockup erratum [Jan Beulich]
  • c4a3f16911: x86: extend get_platform_badpages() interface [Jan Beulich]
  • 1bd7c17c5e: tools/dombuilder: Initialise vcpu debug registers correctly [Andrew Cooper]
  • 1ebb803763: x86/domain: Initialise vcpu debug registers correctly [Andrew Cooper]
  • 042887f3a4: x86/boot: Initialise the debug registers correctly [Andrew Cooper]
  • e61a7cb5dc: x86/boot: enable NMIs after traps init [Sergey Dyasli]
  • f668bb49cd: vtd: add missing check for shared EPT… [Paul Durrant]
  • d635520b6f: x86: fix “xpti=” and “pv-l1tf=” yet again [Jan Beulich]
  • b791d9b7c1: x86: split opt_pv_l1tf [Jan Beulich]
  • 273cc99e39: x86: split opt_xpti [Jan Beulich]
  • ee2e8a05c7: x86: silence false log messages for plain “xpti” / “pv-l1tf” [Jan Beulich]
  • f294d80e8e: x86/vvmx: Disallow the use of VT-x instructions when nested virt is disabled [Andrew Cooper]
  • 782ca9b94f: stubdom/grub.patches: Drop docs changes, for licensing reasons [Ian Jackson]
  • b7dae43a2a: tools/tests: fix an xs-test.c issue [Wei Liu]
  • 62ed524445: x86/boot: Allocate one extra module slot for Xen image placement [Daniel Kiper]
  • 75c8dbc630: x86/hvm/emulate: make sure rep I/O emulation does not cross GFN boundaries [Paul Durrant]
  • 56d90f5fd5: x86/efi: split compiler vs linker support [Roger Pau Monné]
  • 6000494136: x86/efi: move the logic to detect PE build support [Roger Pau Monné]
  • 870fcbfe08: x86/shutdown: use ACPI reboot method for Dell PowerEdge R540 [Ross Lagerwall]
  • 9b3183414c: x86/shutdown: use ACPI reboot method for Dell PowerEdge R740 [Ross Lagerwall]
  • 3eabb91c47: update Xen version to 4.9.4-pre [Jan Beulich]

This release contains NO changes to qemu-traditional and NO changes to qemu-upstream.

This release, which includes source code for qemu-traditional and qemu-upstream, contains the following security fixes. 

XSA Xen qemu-traditional qemu-upstream 
XSA-275 Applied N/A N/A
XSA-276 Only Xen 4.11 or newer are impacted
XSA-277 Only Xen 4.11 or newer are impacted
XSA-278 Applied N/A N/A
XSA-279 Applied N/A N/A
XSA-280 Applied N/A N/A
XSA-281 Unused XSA number
XSA-282 Applied N/A N/A
XSA-283 Widthdrawn XSA
XSA-284 – XSA-288 Under embargo at time of release
XSA-289 Not applied, see TECHNICAL DETAILS of XSA 289

See https://xenbits.xenproject.org/xsa/ for details related to Xen Project security advisories.

We recommend all users of the 4.9 stable series to update to this latest point release.