Hi everyone, I am pleased to announce that the QEMU v8.0.2 stable release is now available.
You can grab the tarball from our download page here: https://www.qemu.org/download/#source v8.0.2 is now tagged in the official qemu.git repository, and the stable-8.0 branch has been updated accordingly: https://gitlab.com/qemu-project/qemu/-/commits/stable-8.0?ref_type=heads This update contains general fixes for various architectures/subsystems, including the following CVE fixes: LSI (CVE-2023-0330) Please see the changelog for additional details and update accordingly. Note that v8.0.1 is also included in the changelog for this release due to a regression being noticed prior to the v8.0.1 release. Thank you to everyone involved! CHANGELOG: f7f686b61c: Update version for 8.0.2 release (Michael Tokarev) bea933e430: block/export: Fix null pointer dereference in error path (Kevin Wolf) dabb4183d1: Update version for 8.0.1 release (Michael Tokarev) ff692a15bb: virtio: qmp: fix memory leak (Paolo Bonzini) 134253a4fe: machine: do not crash if default RAM backend name has been stolen (Igor Mammedov) e49884a909: hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller (CVE-2023-0330) (Thomas Huth) 9d622451fd: usb/ohci: Set pad to 0 after frame update (Paolo Bonzini) 668aeea0ec: util/vfio-helpers: Use g_file_read_link() (Akihiko Odaki) fae9449998: rtl8139: fix large_send_mss divide-by-zero (Stefan Hajnoczi) 02bd13ae3a: igb: Always copy ethernet header (Akihiko Odaki) c84bcff3d3: e1000e: Always copy ethernet header (Akihiko Odaki) 5c4f2f1b60: net/net_rx_pkt: Use iovec for net_rx_pkt_set_protocols() (Akihiko Odaki) ba3c7bf178: igb: Clear IMS bits when committing ICR access (Akihiko Odaki) 6e260100d0: igb: Do not require CTRL.VME for tx VLAN tagging (Akihiko Odaki) 9ff3fe63fc: igb: Fix Rx packet type encoding (Akihiko Odaki) 0f7ca2bf2c: e1000x: Fix BPRC and MPRC (Akihiko Odaki) eb134d1d58: e1000e: Fix tx/rx counters ([email protected]) a7002f15c8: nbd/server: Fix drained_poll to wake coroutine in right AioContext (Kevin Wolf) d001f222e3: graph-lock: Disable locking for now (Kevin Wolf) 84d839e499: block: compile out assert_bdrv_graph_readable() by default (Stefan Hajnoczi) a0b89ba845: tested: add test for nested aio_poll() in poll handlers (Stefan Hajnoczi) a91defe16b: aio-posix: do not nest poll handlers (Stefan Hajnoczi) 81d13aa5e0: virtio-crypto: fix NULL pointer dereference in virtio_crypto_free_request (Mauro Matteo Cascella) 302ac06ab9: virtio-net: not enable vq reset feature unconditionally (Eugenio Pérez) adc49750d2: hw/pci: Disable PCI_ERR_UNCOR_MASK register for machine type < 8.0 (Leonardo Bras) a9144eed6c: vhost: fix possible wrap in SVQ descriptor ring (Hawkins Jiawei) 0de5117819: target/i386: fix avx2 instructions vzeroall and vpermdq (Xinyu Li) db8051ad59: target/i386: fix operand size for VCOMI/VUCOMI instructions (Paolo Bonzini) 1e029102e6: scsi-generic: fix buffer overflow on block limits inquiry (Paolo Bonzini) c283a4bc76: target/arm: Fix vd == vm overlap in sve_ldff1_z (Richard Henderson) c0ad2a9191: migration: Attempt disk reactivation in more failure scenarios (Eric Blake) d2a811dd7d: migration: Minor control flow simplification (Eric Blake) cb898262a4: migration: Handle block device inactivation failures better (Eric Blake) 45a67df841: linux-user: fix getgroups/setgroups allocations (Michael Tokarev) 69a6ea7c4b: linux-user: Fix mips fp64 executables loading (Daniil Kovalev) 0b1b5a4204: tests/docker: bump the xtensa base to debian:11-slim (Alex Bennée) eb82a80f51: docs/about/emulation: fix typo (Lizhi Yang) 8ad637881f: util/async-teardown: wire up query-command-line-options (Claudio Imbrenda) 21b54a683d: s390x/pv: Fix spurious warning with asynchronous teardown (Claudio Imbrenda) 36cd9bc8e2: tcg/i386: Set P_REXW in tcg_out_addi_ptr (Richard Henderson) 117f33c9a7: 9pfs/xen: Fix segfault on shutdown (Jason Andryuk) e347aa89dd: s390x/tcg: Fix LDER instruction format (Ilya Leoshkevich) b858c53ef6: target/s390x: Fix EXECUTE of relative branches (Ilya Leoshkevich) 7ceebe3f90: tcg: ppc64: Fix mask generation for vextractdm (Shivaprasad G Bhat) 950882af67: async: Suppress GCC13 false positive in aio_bh_poll() (Cédric Le Goater) e09f912550: target/arm: Correct AArch64.S2MinTxSZ 32-bit EL1 input size check (Peter Maydell) 80a2c1b5fe: ui: Fix pixel colour channel order for PNG screenshots (Peter Maydell) 3148fe1ac8: target/arm: Fix handling of SW and NSW bits for stage 2 walks (Peter Maydell) 4b59b5bd14: accel/tcg: Fix atomic_mmu_lookup for reads (Richard Henderson) 488ad8b302: hw/pci-bridge: pci_expander_bridge fix type in pxb_cxl_dev_reset() (Jonathan Cameron) f91d0db71e: target/riscv: Restore the predicate() NULL check behavior (Bin Meng) f5301431e8: target/riscv: Fix itrigger when icount is used (LIU Zhiwei) 3b02d0db4a: block: Don't call no_coroutine_fns in qmp_block_resize() (Kevin Wolf) e0deae4f49: block: bdrv/blk_co_unref() for calls in coroutine context (Kevin Wolf) 38a598aee3: block: Consistently call bdrv_activate() outside coroutine (Kevin Wolf) 2197a94cb4: block: Fix use after free in blockdev_mark_auto_del() (Kevin Wolf) 8322e5300f: meson: leave unnecessary modules out of the build (Paolo Bonzini) 4dc5df865c: softfloat: Fix the incorrect computation in float32_exp2 (Shivaprasad G Bhat) a458252c16: block/export: call blk_set_dev_ops(blk, NULL, NULL) (Stefan Hajnoczi) f6227dd60d: hw/net/allwinner-sun8i-emac: Correctly byteswap descriptor fields (Peter Maydell) 2daa9e4d7e: hw/sd/allwinner-sdhost: Correctly byteswap descriptor fields (Peter Maydell) 6944823a6f: target/arm: Define and use new load_cpu_field_low32() (Peter Maydell) af08c70ef5: hw/intc/allwinner-a10-pic: Don't use set_bit()/clear_bit() (Peter Maydell) 975f12aa52: hw/arm/raspi: Use arm_write_bootloader() to write boot code (Peter Maydell) 5477a21350: hw/arm/aspeed: Use arm_write_bootloader() to write the bootloader (Cédric Le Goater) 168f193c5b: hw/arm/boot: Make write_bootloader() public as arm_write_bootloader() (Cédric Le Goater) 61ef050639: hw/net/msf2-emac: Don't modify descriptor in-place in emac_store_desc() (Peter Maydell) f0c5a78029: target/arm: Initialize debug capabilities only once (Akihiko Odaki) 9448a0fa11: docs/about/deprecated.rst: Add "since 7.1" tag to dtb-kaslr-seed deprecation (Peter Maydell) 8c3cf36260: qemu-options: finesse the recommendations around -blockdev (Alex Bennée) f528cfc3fa: block/monitor: Fix crash when executing HMP commit (Wang Liang) bb47b5bc2e: acpi: pcihp: allow repeating hot-unplug requests (Igor Mammedov) 134a1a3320: hw/timer/imx_epit: fix limit check (Axel Heider) ac7f07ebc8: hw/timer/imx_epit: don't shadow variable (Axel Heider) 3ed99d232c: target/i386: Change wrong XFRM value in SGX CPUID leaf (Yang Zhong) 6f7b9f7b6f: vnc: avoid underflow when accessing user-provided address (Paolo Bonzini)
