xen (4.20.1-1+deb13u3.7) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ e5d643d28a2b8e077ae3
    xen/vpci: fix backport of 53859596c0d3-Wed 22 Oct 2025 04:42
  * XSA-475
    0050-x86-viridian-Enforce-bounds-check-in-vpmask_set.diff:This is XSA-475 / CVE-2025-58147.
    0051-x86-viridian-Enforce-bounds-check-in-send_ipi.diff:This is XSA-475 / CVE-2025-58148.

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 23 Oct 2025 09:09:26 -0700

xen (4.20.1-1+deb13u3.6) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ ae992e68d3ed7a177
    CI: Create initrd fragments explicitly as root-Wed 10 Sep 2025 09:19
  * XSA-472
    0035-x86-viridian-avoid-NULL-pointer-dereference-in-update.diff:This is CVE-2025-27466 / part of XSA-472.
    0036-x86-viridian-avoid-NULL-pointer-dereference-in-viridi.diff:This is CVE-2025-58142 / part of XSA-472.
    0037-x86-viridian-protect-concurrent-modification-of-the-r.diff:This is CVE-2025-58143 / part of XSA-472.
  * XSA-473
    0038-Arm-foreign-page-handling-in-p2m_get_page_from_gfn.diff:This is CVE-2025-58144 / part of XSA-473.
    0039-Arm-adjust-locking-in-p2m_get_page_from_gfn.diff:This is CVE-2025-58145 / part of XSA-473.
  * rebuild for 13.1

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 02 Oct 2025 12:40:07 -0700

xen (4.20.1-1+deb13u3.5) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ c59a69ae9ebdebb83-x86/gen
    cpuid: Fix debugging for cycle detection-Wed 3 Sep 2025 04:59

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 04 Sep 2025 14:57:41 -0700

xen (4.20.1-1+deb13u3.4) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ ea5025554e982bd377f
    xenalyze: correct symbol name length fscanf specifier-Mon 4 Aug 2025 06:22
  * rebuild for new stable

 -- Mark Pryor <pryorm09@gmail.com>  Sun, 17 Aug 2025 10:32:43 -0700

xen (4.20.1-1+deb13u3.3) trixie; urgency=medium

  * Non-maintainer upload.
  * rebuild for latest trixie source

 -- Mark Pryor <pryorm09@gmail.com>  Wed, 30 Jul 2025 10:02:26 -0700

xen (4.20.1-1+deb13u3.2) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ 69568ab30622ba09a398
    x86/S3: dont lose previously collected CPU data (AMD extra)-Tue 22 Jul 2025 03:42

 -- Mark Pryor <pryorm09@gmail.com>  Tue, 22 Jul 2025 09:09:15 -0700

xen (4.20.1-1+deb13u3.1) trixie; urgency=medium

  * HEAD @ 08f043965a7b1047a
    update Xen version to 4.20.1-Wed 9 Jul 2025 06:57
  * initial build of 4.20.1
  * tarball additions from git: qemu-xen 9.1.0, mini-os, qemu-xen-traditional

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 10 Jul 2025 08:45:12 -0700

xen (4.20.0-1+deb13u3.11) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ 138d403e0737da0c
    x86/spec-ctrl: Mitigate Transitive Scheduler Attacks-Tue 8 Jul 2025 07:00
  * XSA-471
    0138-x86-ucode-Digests-for-TSA-microcode.diff:This is part of XSA-471 / CVE-2024-36350 / CVE-2024-36357.
    0139-x86-idle-Rearrange-VERW-and-MONITOR-in-mwait_idle_wit.diff:This is part of XSA-471 / CVE-2024-36350 / CVE-2024-36357.
    0140-x86-spec-ctrl-Mitigate-Transitive-Scheduler-Attacks.diff:This is part of XSA-471 / CVE-2024-36350 / CVE-2024-36357.

 -- Mark Pryor <pryorm09@gmail.com>  Tue, 08 Jul 2025 08:22:18 -0700

xen (4.20.0-1+deb13u3.10) trixie; urgency=medium

  * Non-maintainer upload.
  * XSA-470
  * HEAD @ 9e1309b0f037a6
    x86/emul: Fix extable registration in invoke_stub-Tue 1 Jul 2025 04:57
  * all *efi blobs to usr/lib/efi, not ESP

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 03 Jul 2025 09:56:45 -0700

xen (4.20.0-1+deb13u3.9) trixie; urgency=medium

  * Non-maintainer upload.
  * fix 3.8 double install of perf hypervisor

 -- Mark Pryor <pryorm09@gmail.com>  Sun, 29 Jun 2025 00:55:24 -0700

xen (4.20.0-1+deb13u3.8) trixie; urgency=medium

  * Non-maintainer upload.
  * d/control: xen-perf-hypervisor, new package

 -- Mark Pryor <pryorm09@gmail.com>  Sun, 22 Jun 2025 20:54:47 -0700

xen (4.20.0-1+deb13u3.7) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ ddec00769cd80a44
    x86/emul: Fix emulation of RDSEED with older toolchains-Fri 16 May 2025 13:34

 -- Mark Pryor <pryorm09@gmail.com>  Fri, 23 May 2025 11:58:04 -0700

xen (4.20.0-1+deb13u3.6) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ b1eeea44cd129ca5e
    cpufreq: dont leave stale statistics pointer-Tue 13 May 2025 04:56
  * d/scripts: repair py3 shebang

 -- Mark Pryor <pryorm09@gmail.com>  Tue, 13 May 2025 08:37:38 -0700

xen (4.20.0-1+deb13u3.5) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ 45056fe5c5bf866208bf8
    x86/spec-ctrl: Synthesise ITS_NO to guests on unaffected hardware-Mon 12 May 2025 09:27
  * XSA-469
    0100-x86-guest-Remove-use-of-the-Xen-hypercall_page.diff:This is part of XSA-469 / CVE-2024-28956
    0101-x86-thunk-Mis-align-__x86_indirect_thunk_-to-mitigate.diff:This is part of XSA-469 / CVE-2024-28956
    0102-x86-thunk-Mis-align-the-RETs-in-clear_bhb_loops-to-mi.diff:This is part of XSA-469 / CVE-2024-28956
    0103-x86-stubs-Introduce-place_ret-to-abstract-away-raw-0x.diff:This is part of XSA-469 / CVE-2024-28956
    0104-x86-thunk-Build-Xen-with-Return-Thunks.diff:This is part of XSA-469 / CVE-2024-28956
    0105-x86-spec-ctrl-Synthesise-ITS_NO-to-guests-on-unaffect.diff:This is part of XSA-469 / CVE-2024-28956

 -- Mark Pryor <pryorm09@gmail.com>  Mon, 12 May 2025 18:53:17 -0700

xen (4.20.0-1+deb13u3.4) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ 35cb38b2220b15e122
    x86: constrain sub-page access length in mmio_ro_emulated_write-Tue 29 Apr 2025 11:47

 -- Mark Pryor <pryorm09@gmail.com>  Tue, 29 Apr 2025 13:07:46 -0700

xen (4.20.0-1+deb13u3.3) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ e071b233944deee
    CI: Add yet another HW runner-Fri 4 Apr 2025 03:32
  * d/rules: libxenmisc4.20, all *.so.* must be versioned

 -- Mark Pryor <pryorm09@gmail.com>  Fri, 04 Apr 2025 14:08:02 -0700

xen (4.20.0-1+deb13u3.2) trixie; urgency=medium

  * Non-maintainer upload.
  * HEAD @ c607822b5ae946cfc2
    x86/setup: correct off-by-1 in module mapping-Thu 20 Mar 2025 04:55
  * rules: binary-arch goes first, not binary-indep
    new in trixie the binary flag, not build is on debian/rules

 -- Mark Pryor <pryorm09@gmail.com>  Sat, 22 Mar 2025 10:45:54 -0700

xen (4.20.0-1+deb13u3.1) trixie; urgency=medium

  * HEAD @ 3ad5d648cda5add395f
    Update to Xen 4.20-Tue 4 Mar 2025 08:41
  * initial trixie build of 4.20.0, ported from bookworm
  * qemuu v9.1.0

 -- Mark Pryor <pryorm09@gmail.com>  Fri, 07 Mar 2025 10:43:58 -0800

xen (4.20.0-1+deb12u3.1) bookworm; urgency=medium

  * HEAD @ 3ad5d648cda5add395f
    Update to Xen 4.20-Tue 4 Mar 2025 08:41
  * initial build of 4.20.0
  * XSA-467
    0557-IOMMU-x86-the-bus-to-bridge-lock-needs-to-be-acquired.diff:This is XSA-467 / CVE-2025-1713.

 -- Mark Pryor <pryorm09@gmail.com>  Tue, 04 Mar 2025 14:24:30 -0800

xen (4.20~rc5-1+deb12u3.1) bookworm; urgency=medium

  * HEAD @ ac8198c532f4e39659d5e5
    Switch to release builds by default-Fri 21 Feb 2025 06:58

 -- Mark Pryor <pryorm09@gmail.com>  Sat, 22 Feb 2025 13:09:43 -0800

xen (4.20~rc2-1+deb12u3.2) bookworm; urgency=medium

  * Non-maintainer upload.
  * HEAD @ 39c45caef271bc2b
    xen/arm: ffa: fix bind/unbind notification-Mon 3 Feb 2025 14:48
  * debug is off

 -- Mark Pryor <pryorm09@gmail.com>  Mon, 03 Feb 2025 20:20:34 -0800

xen (4.20~rc2-1+deb12u3.1) bookworm; urgency=medium

  * HEAD @ c3f5d1bb40b57d467
    automation/cirrus-ci: introduce FreeBSD randconfig builds-Fri 17 Jan 2025 07:00
  * qemuu: patch xen4k-0996* fix meson introspection

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 30 Jan 2025 15:32:27 -0800

xen (4.20~rc1-1+deb12u3.1) bookworm; urgency=medium

  * HEAD @ 19730dbb3fd8078743d5
    Update Xen version to 4.20-rc-Fri 10 Jan 2025 07:26
  * initial build of 4.20
  * qemuu: v9.1.0, add git depends

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 16 Jan 2025 11:22:04 -0800

xen (4.19.1-1+deb12u4.2) bookworm; urgency=medium

  * qemuu: v9.1.0, from staging
    test build for next gen qemu
  * HEAD @ 8dd897e691194929
    MISRA: Unmark Rules 1.1 and 2.1 as clean following Eclair upgrade-Tue 17 Dec 2024 14:01

 -- Mark Pryor <pryorm09@gmail.com>  Fri, 27 Dec 2024 18:42:23 -0800

xen (4.19.1-1+deb12u3.1) bookworm; urgency=medium

  * HEAD @ ccf400846780289ae779
    update Xen version to 4.19.1-Tue 3 Dec 2024 23:52
  * qemuu: v8.0.5
  * XSA-463
    0070-x86-HVM-drop-stdvga-s-cache-struct-member.diff:This is part of XSA-463 / CVE-2024-45818
    0071-x86-HVM-drop-stdvga-s-stdvga-struct-member.diff:This is part of XSA-463 / CVE-2024-45818
    0072-x86-HVM-remove-unused-MMIO-handling-code.diff:This is part of XSA-463 / CVE-2024-45818
    0073-x86-HVM-drop-stdvga-s-gr-struct-member.diff:This is part of XSA-463 / CVE-2024-45818
    0074-x86-HVM-drop-stdvga-s-sr-struct-member.diff:This is part of XSA-463 / CVE-2024-45818
    0075-x86-HVM-drop-stdvga-s-g-s-r_index-struct-members.diff:This is part of XSA-463 / CVE-2024-45818
    0076-x86-HVM-drop-stdvga-s-vram_page-struct-member.diff:This is part of XSA-463 / CVE-2024-45818
    0077-x86-HVM-drop-stdvga-s-lock-struct-member.diff:This is part of XSA-463 / CVE-2024-45818
  * XSA-464
    0079-libxl-Use-zero-ed-memory-for-PVH-acpi-tables.diff:This is XSA-464 / CVE-2024-45819.

 -- Mark Pryor <pryorm09@gmail.com>  Thu, 05 Dec 2024 18:21:34 -0800
