From: Hans van Kranenburg <hans@knorrie.org>
Date: Sat, 19 Feb 2022 19:45:13 +0000 (+0100)
Subject: debian/changelog: finish 4.16.0+51-g0941d6cb-1
X-Git-Tag: archive/raspbian/4.16.1-1+rpi1^2~39
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=f82fd6101cba15882ca713f7c50ff8bf16f45ab2;p=xen.git

debian/changelog: finish 4.16.0+51-g0941d6cb-1
---

diff --git a/debian/changelog b/debian/changelog
index e3622cdd66..1d51678a37 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,17 @@
-xen (4.16.0+51-g0941d6cb-1) UNRELEASED; urgency=medium
+xen (4.16.0+51-g0941d6cb-1) unstable; urgency=medium
 
-  * Update to new upstream version 4.16.0+51-g0941d6cb.
+  * Update to new upstream version 4.16.0+51-g0941d6cb, which also contains
+    security fixes for the following issues:
+    - arm: guest_physmap_remove_page not removing the p2m mappings
+      XSA-393 CVE-2022-23033
+    - A PV guest could DoS Xen while unmapping a grant
+      XSA-394 CVE-2022-23034
+    - Insufficient cleanup of passed-through device IRQs
+      XSA-395 CVE-2022-23035
+  * Note that the following XSA are not listed, because...
+    - XSA-391 and XSA-392 have patches for the Linux kernel.
+  * Upload to unstable now, which obsoletes the Xen 4.14 FTBFS issue.
+    (Closes: #1002658)
 
  -- Hans van Kranenburg <hans@knorrie.org>  Sat, 19 Feb 2022 20:29:32 +0100