debian/changelog: finish 4.14.3-1

diff --git a/debian/changelog b/debian/changelog
index a1238ba11f9a29a54c08a42809abafe86fe155b5..06e40cd93a8c71389dc98adf3424081558095aad 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,19 @@
-xen (4.14.3-1) UNRELEASED; urgency=medium
+xen (4.14.3-1) unstable; urgency=high
 
-  * Update to new upstream version 4.14.3.
+  * Update to new upstream version 4.14.3, which also contains security fixes
+    for the following issues:
+    - IOMMU page mapping issues on x86
+      XSA-378 CVE-2021-28694 CVE-2021-28695 CVE-2021-28696
+    - grant table v2 status pages may remain accessible after de-allocation
+      XSA-379 CVE-2021-28697
+    - long running loops in grant table handling
+      XSA-380 CVE-2021-28698
+    - inadequate grant-v2 status frames array bounds check
+      XSA-382 CVE-2021-28699
+    - xen/arm: No memory limit for dom0less domUs
+      XSA-383 CVE-2021-28700
+    - Another race in XENMAPSPACE_grant_table handling
+      XSA-384 CVE-2021-28701
 
  -- Hans van Kranenburg <hans@knorrie.org>  Mon, 13 Sep 2021 11:51:20 +0200