From b2df88c3389145de497d8fffdc14c6584220158a Mon Sep 17 00:00:00 2001
From: Ian Jackson <ian.jackson@eu.citrix.com>
Date: Wed, 21 Dec 2016 15:05:47 +0000
Subject: [PATCH] changelog: Document security fixes

Signed-off-by: Ian Jackson <Ian.Jackson@eu.citrix.com>
---
 debian/changelog | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/debian/changelog b/debian/changelog
index 172370d66f..11b36fc4e5 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -11,6 +11,16 @@ xen (4.8.0-1~) unstable; urgency=high
         XSA-192   CVE-2016-9382
         XSA-191   CVE-2016-9386
 
+  * Apply security fixes from upstream:
+        XSA-204   CVE-2016-10013                 Closes:#848713
+        XSA-203   CVE-2016-10025
+        XSA-202   CVE-2016-10024
+
+  * For completeness, the following XSAs do not apply here:
+        XSA-197                      Bug is in qemu
+        XSA-199                      Bug is in qemu
+        XSA-200   CVE-2016-9932      Xen 4.8 is not affected
+
   * Drop -lcrypto search from upstream configure, and from our
     Build-Depends.  Closes:#844419.
 
-- 
2.30.2