[ol7_latest] qemu-block-rbd-15:4.2.1-10.el7.aarch64

Name:	qemu-block-rbd
Epoch:	15
Version:	4.2.1
Release:	10.el7
Architecture:	aarch64
Group:	Development/Tools
Size:	69704
License:	GPLv2+ and LGPLv2+ and BSD
RPM:	qemu-block-rbd-4.2.1-10.el7.aarch64.rpm
Source RPM:	qemu-4.2.1-10.el7.src.rpm
Build Date:	Mon Jun 14 2021
Build Host:	ca-buildarm01.us.oracle.com
Vendor:	Oracle America
URL:	http://www.qemu.org/
Summary:	QEMU Ceph/RBD block driver
Description:	This package provides the additional Ceph/RBD block driver for QEMU. Install this package if you want to access remote Ceph volumes using the rbd protocol.

Changelog (Show File list) (Show related packages)

Mon Jun 14 2021 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-10.el7

- e1000: fail early for evil descriptor (Jason Wang)  [Orabug: 32560552]  {CVE-2021-20257}
- Document CVE-2020-27661 as fixed (Mark Kanda)  [Orabug: 32960200]  {CVE-2020-27661}
- block: Avoid stale pointer dereference in blk_get_aio_context() (Greg Kurz)  
- block: Fix blk->in_flight during blk_wait_while_drained() (Kevin Wolf)  
- block: Increase BB.in_flight for coroutine and sync interfaces (Kevin Wolf)  
- block-backend: Reorder flush/pdiscard function definitions (Kevin Wolf)

Thu May 20 2021 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-9.el7

- Revert "oslib-posix: refactor memory prealloc threads" (Mark Kanda)  [Orabug: 32903662] 
- Revert "oslib-posix: initialize backend memory objects in parallel" (Mark Kanda)  [Orabug: 32903662]

Tue May 18 2021 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-8.el7
```
- i386/pc: let iterator handle regions below 4G (Joao Martins)
```

Tue May 11 2021 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-7.el7

- arm/virt: Add memory hot remove support (Mihai Carabas)  [Orabug: 32643506] 
- i386/pc: consolidate usable iova iteration (Joao Martins)  
- i386/acpi: fix SRAT ranges in accordance to usable IOVA (Joao Martins)  
- migration: increase listening socket backlog (Elena Ufimtseva)  [Orabug: 32792545] 
- multifd: Make multifd_save_setup() get an Error parameter (Juan Quintela)  
- multifd: Make multifd_load_setup() get an Error parameter (Juan Quintela)  
- migration: fix maybe-uninitialized warning (Marc-André Lureau)  
- migration: Fix the re-run check of the migrate-incoming command (Yury Kotov)  
- multifd: Initialize local variable (Juan Quintela)  
- multifd: Be consistent about using uint64_t (Juan Quintela)  
- Bug #1829242 correction. (Alexey Romko)  
- migration/multifd: fix destroyed mutex access in terminating multifd threads (Jiahui Cen)  
- migration/multifd: fix nullptr access in terminating multifd threads (Jiahui Cen)  
- migration/multifd: not use multifd during postcopy (Wei Yang)  
- migration/multifd: clean pages after filling packet (Wei Yang)  
- migration: Make sure that we don't call write() in case of error (Juan Quintela)  
- migration: fix multifd_send_pages() next channel (Laurent Vivier)  
- migration/multifd: bypass uuid check for initial packet (Elena Ufimtseva)  [Orabug: 32610480] 
- migration/tls: add error handling in multifd_tls_handshake_thread (Hao Wang)  
- migration/tls: fix inverted semantics in multifd_channel_connect (Hao Wang)  
- migration/multifd: do not access uninitialized multifd_recv_state (Elena Ufimtseva)  [Orabug: 32795384] 
- io/channel-tls.c: make qio_channel_tls_shutdown thread-safe (Lukas Straub)  
- qemu.spec: Enable qemu-guest-agent RPM for OL7 (Karl Heubaum)  [Orabug: 32415543] 
- virtio-net: Set mac address to hardware if the peer is vdpa (Cindy Lu)  
- net: Add vhost-vdpa in show_netdevs() (Cindy Lu)  
- vhost-vdpa: Add qemu_close in vhost_vdpa_cleanup (Cindy Lu)  
- hw/virtio/vhost-vdpa: Fix Coverity CID 1432864 (Philippe Mathieu-Daudé)  
- vhost-vdpa: negotiate VIRTIO_NET_F_STATUS with driver (Si-Wei Liu)  
- configure: Fix build dependencies with vhost-vdpa. (Laurent Vivier)  
- configure: simplify vhost condition with Kconfig (Marc-André Lureau)  
- vhost-vdpa: add trace-events (Laurent Vivier)  
- dma/pl330: Fix qemu_hexdump() usage in pl330.c (Mark Kanda)  
- util/hexdump: introduce qemu_hexdump_line() (Laurent Vivier)  
- util/hexdump: Reorder qemu_hexdump() arguments (Philippe Mathieu-Daudé)  
- util/hexdump: Convert to take a void pointer argument (Philippe Mathieu-Daudé)  
- net/colo-compare.c: Only hexdump packets if tracing is enabled (Lukas Straub)  
- vhost-vdpa: batch updating IOTLB mappings (Jason Wang)  
- vhost: switch to use IOTLB v2 format (Jason Wang)  
- vhost-vdpa: remove useless variable (Laurent Vivier)  
- virtio: vdpa: omit check return of g_malloc (Li Qiang)  
- vhost-vdpa: fix indentation in vdpa_ops (Stefano Garzarella)  
- virtio-net: check the existence of peer before accessing vDPA config (Jason Wang)  
- virtio-pci: fix wrong index in virtio_pci_queue_enabled (Yuri Benditovich)  
- virtio-pci: fix virtio_pci_queue_enabled() (Laurent Vivier)  
- vhost-vdpa :Fix Coverity CID 1430270 / CID 1420267 (Cindy Lu)  
- vhost-vdpa: fix the compile issue without kvm (Cindy Lu)  
- vhost-vdpa: introduce vhost-vdpa net client (Cindy Lu)  
- vhost-vdpa: introduce vhost-vdpa backend (Cindy Lu)  
- linux headers: sync to 5.9-rc4 (Jason Wang)  
- Linux headers: update (Cornelia Huck)  
- virtio-net: fix rsc_ext compat handling (Cornelia Huck)  
- linux-headers: update against Linux 5.7-rc3 (Cornelia Huck)  
- virtiofsd: Pull in kernel's fuse.h (Dr. David Alan Gilbert)  
- linux-headers: Update (Bharata B Rao)  
- vhost_net: introduce set_config & get_config (Cindy Lu)  
- vhost: implement vhost_force_iommu method (Cindy Lu)  
- vhost: introduce new VhostOps vhost_force_iommu (Cindy Lu)  
- vhost: implement vhost_vq_get_addr method (Cindy Lu)  
- vhost: introduce new VhostOps vhost_vq_get_addr (Cindy Lu)  
- vhost: implement vhost_dev_start method (Cindy Lu)  
- vhost: introduce new VhostOps vhost_dev_start (Cindy Lu)  
- vhost: check the existence of vhost_set_iotlb_callback (Jason Wang)  
- virtio-pci: implement queue_enabled method (Jason Wang)  
- virtio-bus: introduce queue_enabled method (Jason Wang)  
- vhost_net: use the function qemu_get_peer (Cindy Lu)  
- net: introduce qemu_get_peer (Cindy Lu)  
- vhost: correctly turn on VIRTIO_F_IOMMU_PLATFORM (Jason Wang)  
- imx7-ccm: add digprog mmio write method (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- tz-ppc: add dummy read/write methods (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- spapr_pci: add spapr msi read method (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- nvram: add nrf51_soc flash read method (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- prep: add ppc-parity write method (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- vfio: add quirk device write method (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- pci-host: designware: add pcie-msi read method (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- hw/pci-host: add pci-intack write method (Prasad J Pandit)  [Orabug: 31576552]  {CVE-2020-15469}
- oslib-posix: initialize backend memory objects in parallel (Mark Kanda)  [Orabug: 32555402] 
- oslib-posix: refactor memory prealloc threads (Mark Kanda)  [Orabug: 32555402] 
- oslib-posix: take lock before qemu_cond_broadcast (Bauerchen)  [Orabug: 32555402] 
- oslib-posix: initialize mutex and condition variable (Paolo Bonzini)  [Orabug: 32555402] 
- mem-prealloc: optimize large guest startup (bauerchen)  [Orabug: 32555402] 
- i386: Add the support for AMD EPYC 3rd generation processors (Babu Moger)  
- acpi: cpuhp: document CPHP_GET_CPU_ID_CMD command (Igor Mammedov)  
- acpi: cpuhp: add CPHP_GET_CPU_ID_CMD command (Igor Mammedov)  
- acpi: cpuhp: spec: add typical usecases (Igor Mammedov)  
- acpi: cpuhp: spec: clarify store into 'Command data' when 'Command field' == 0 (Igor Mammedov)  
- acpi: cpuhp: spec: fix 'Command data' description (Igor Mammedov)  
- acpi: cpuhp: spec: clarify 'CPU selector' register usage and endianness (Igor Mammedov)  
- acpi: cpuhp: introduce 'Command data 2' field (Igor Mammedov)  
- x86: ich9: let firmware negotiate 'CPU hot-unplug with SMI' feature (Igor Mammedov)  
- x86: ich9: factor out "guest_cpu_hotplug_features" (Igor Mammedov)  
- x86: acpi: let the firmware handle pending "CPU remove" events in SMM (Igor Mammedov)  
- x86: acpi: introduce AcpiPmInfo::smi_on_cpu_unplug (Igor Mammedov)  
- acpi: cpuhp: introduce 'firmware performs eject' status/control bits (Igor Mammedov)  
- x68: acpi: trigger SMI before sending hotplug Notify event to OSPM (Igor Mammedov)  
- x86: acpi: introduce the PCI0.SMI0 ACPI device (Igor Mammedov)  
- x86: acpi: introduce AcpiPmInfo::smi_on_cpuhp (Igor Mammedov)  
- x86: ich9: expose "smi_negotiated_features" as a QOM property (Igor Mammedov)  
- tests: acpi: mark to be changed tables in bios-tables-test-allowed-diff (Igor Mammedov)  
- acpi: add aml_land() and aml_break() primitives (Igor Mammedov)  
- x86: cpuhp: refuse cpu hot-unplug request earlier if not supported (Igor Mammedov)  
- x86: cpuhp: prevent guest crash on CPU hotplug when broadcast SMI is in use (Igor Mammedov)  
- x86: lpc9: let firmware negotiate 'CPU hotplug with SMI' features (Igor Mammedov)  
- q35: implement 128K SMRAM at default SMBASE address (Igor Mammedov)  
- hw/intc/arm_gic: Fix interrupt ID in GICD_SGIR register (Philippe Mathieu-Daudé)  [Orabug: 32470471]  {CVE-2021-20221}
- memory: clamp cached translation in case it points to an MMIO region (Paolo Bonzini)  [Orabug: 32252673]  {CVE-2020-27821}
- hw/sd/sdhci: Fix DMA Transfer Block Size field (Philippe Mathieu-Daudé)  [Orabug: 32613470]  {CVE-2021-3409}

Fri Mar 12 2021 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-6.el7

- i386/pc: Keep PCI 64-bit hole within usable IOVA space (Joao Martins)  
- pc/cmos: Adjust CMOS above 4G memory size according to 1Tb boundary (Joao Martins)  
- i386/pc: Round up the hotpluggable memory within valid IOVA ranges (Joao Martins)  
- i386/pc: Account IOVA reserved ranges above 4G boundary (Joao Martins)

Tue Feb 09 2021 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-5.el7

- qemu.spec: use --tls-priority=NORMAL for OL7 (Elena Ufimtseva)  
- hostmem: fix default "prealloc-threads" count (Mark Kanda)  [Orabug: 32472127] 
- hostmem: introduce "prealloc-threads" property (Igor Mammedov)  
- qom: introduce object_register_sugar_prop (Paolo Bonzini)  
- migration/multifd: Do error_free after migrate_set_error to avoid memleaks (Pan Nengyuan)  
- multifd/tls: fix memoryleak of the QIOChannelSocket object when cancelling migration (Chuan Zheng)  
- migration/multifd: fix hangup with TLS-Multifd due to blocking handshake (Chuan Zheng)  
- migration/tls: add trace points for multifd-tls (Chuan Zheng)  
- migration/tls: add support for multifd tls-handshake (Chuan Zheng)  
- migration/tls: extract cleanup function for common-use (Chuan Zheng)  
- migration/multifd: fix memleaks in multifd_new_send_channel_async (Pan Nengyuan)  
- migration/multifd: fix nullptr access in multifd_send_terminate_threads (Zhimin Feng)  
- migration/tls: add tls_hostname into MultiFDSendParams (Chuan Zheng)  
- migration/tls: extract migration_tls_client_create for common-use (Chuan Zheng)  
- migration/tls: save hostname into MigrationState (Chuan Zheng)  
- tests/qtest: add a test case for pvpanic-pci (Mihai Carabas)  
- pvpanic : update pvpanic spec document (Mihai Carabas)  
- hw/misc/pvpanic: add PCI interface support (Mihai Carabas)  
- hw/misc/pvpanic: split-out generic and bus dependent code (Mihai Carabas)  
- 9pfs: Fully restart unreclaim loop (CVE-2021-20181) (Greg Kurz)  [Orabug: 32441198]  {CVE-2021-20181}
- ide: atapi: check logical block address and read size (CVE-2020-29443) (Prasad J Pandit)  [Orabug: 32393835]  {CVE-2020-29443}
- Document CVE-2019-20808 as fixed (Mark Kanda)  [Orabug: 32339196]  {CVE-2019-20808}
- block/iscsi:fix heap-buffer-overflow in iscsi_aio_ioctl_cb (Chen Qun)  [Orabug: 32339207]  {CVE-2020-11947}
- net: remove an assert call in eth_get_gso_type (Prasad J Pandit)  [Orabug: 32102583]  {CVE-2020-27617}
- nvdimm: honor -object memory-backend-file, readonly=on option (Stefan Hajnoczi)  [Orabug: 32265408] 
- hostmem-file: add readonly=on|off option (Stefan Hajnoczi)  [Orabug: 32265408] 
- memory: add readonly support to memory_region_init_ram_from_file() (Stefan Hajnoczi)  [Orabug: 32265408]

Fri Dec 11 2020 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-4.el7

- Document CVE-2020-25723 as fixed (Mark Kanda)  [Orabug: 32222397]  {CVE-2020-25084} {CVE-2020-25723}
- hw/net/e1000e: advance desc_offset in case of null descriptor (Prasad J Pandit)  [Orabug: 32217517]  {CVE-2020-28916}
- i386: Add 2nd Generation AMD EPYC processors (Moger, Babu)  [Orabug: 32217570] 
- libslirp: Update version to include CVE fixes (Mark Kanda)  [Orabug: 32208456] [Orabug: 32208462]  {CVE-2020-29129} {CVE-2020-29130}
- Document CVE-2020-25624 as fixed (Mark Kanda)  [Orabug: 32212527]  {CVE-2020-25624} {CVE-2020-25625}
- pvpanic: Advertise the PVPANIC_CRASHLOADED event support (Paolo Bonzini)  [Orabug: 32102853] 
- ati: check x y display parameter values (Prasad J Pandit)  [Orabug: 32108251]  {CVE-2020-27616}
- Add AArch64 support for QMP regdump tool and sosreport plugin (Mark Kanda)  [Orabug: 32080658] 
- Add qemu_regdump sosreport plugin support for '-mon' QMP sockets (Mark Kanda)  
- migration/dirtyrate: present dirty rate only when querying the rate has completed (Chuan Zheng)  
- migration/dirtyrate: record start_time and calc_time while at the measuring state (Chuan Zheng)  
- migration/dirtyrate: Add trace_calls to make it easier to debug (Chuan Zheng)  
- migration/dirtyrate: Implement qmp_cal_dirty_rate()/qmp_get_dirty_rate() function (Chuan Zheng)  
- migration/dirtyrate: Implement calculate_dirtyrate() function (Chuan Zheng)  
- migration/dirtyrate: Implement set_sample_page_period() and is_sample_period_valid() (Chuan Zheng)  
- migration/dirtyrate: skip sampling ramblock with size below MIN_RAMBLOCK_SIZE (Chuan Zheng)  
- migration/dirtyrate: Compare page hash results for recorded sampled page (Chuan Zheng)  
- migration/dirtyrate: Record hash results for each sampled page (Chuan Zheng)  
- migration/dirtyrate: move RAMBLOCK_FOREACH_MIGRATABLE into ram.h (Chuan Zheng)  
- migration/dirtyrate: Add dirtyrate statistics series functions (Chuan Zheng)  
- migration/dirtyrate: Add RamblockDirtyInfo to store sampled page info (Chuan Zheng)  
- migration/dirtyrate: add DirtyRateStatus to denote calculation status (Chuan Zheng)  
- migration/dirtyrate: setup up query-dirtyrate framwork (Chuan Zheng)  
- ram_addr: Split RAMBlock definition (Juan Quintela)

Mon Sep 28 2020 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-3.el7

- qemu-kvm.spec: Install block storage module RPMs by default (Karl Heubaum)  [Orabug: 31943789] 
- qemu-kvm.spec: Enable block-ssh module RPM (Karl Heubaum)  [Orabug: 31943763] 
- hw: usb: hcd-ohci: check for processed TD before retire (Prasad J Pandit)  [Orabug: 31901690]  {CVE-2020-25625}
- hw: usb: hcd-ohci: check len and frame_number variables (Prasad J Pandit)  [Orabug: 31901690]  {CVE-2020-25625}
- hw: ehci: check return value of 'usb_packet_map' (Li Qiang)  [Orabug: 31901649]  {CVE-2020-25084}
- hw: xhci: check return value of 'usb_packet_map' (Li Qiang)  [Orabug: 31901649]  {CVE-2020-25084}
- qemu.spec: Enable '-Werror' for OL7 builds (Mark Kanda)  [Orabug: 31922718] 
- usb: fix setup_len init (CVE-2020-14364) (Gerd Hoffmann)  [Orabug: 31848849]  {CVE-2020-14364}
- Document CVE-2020-12829 and CVE-2020-14415 as fixed (Mark Kanda)  [Orabug: 31855502] [Orabug: 31855427]  {CVE-2020-12829} {CVE-2020-14415}

Fri Aug 28 2020 Mark Kanda <mark.kanda@oracle.com> - 15:4.2.1-2.el7

- hw/net/xgmac: Fix buffer overflow in xgmac_enet_send() (Mauro Matteo Cascella)  [Orabug: 31667649]  {CVE-2020-15863}
- hw/net/net_tx_pkt: fix assertion failure in net_tx_pkt_add_raw_fragment() (Mauro Matteo Cascella)  [Orabug: 31737809]  {CVE-2020-16092}
- migration: fix memory leak in qmp_migrate_set_parameters (Zheng Chuan)  [Orabug: 31806256] 
- virtio-net: fix removal of failover device (Juan Quintela)  [Orabug: 31806255] 
- pvpanic: implement crashloaded event handling (Zhenwei Pi)  [Orabug: 31677154] 
- pvpanic: introduce crashloaded for pvpanic (Zhenwei Pi)  [Orabug: 31677154]

Wed Jul 22 2020 Karl Heubaum <karl.heubaum@oracle.com> - 15:4.2.1-1.el7

- hw/sd/sdcard: Do not switch to ReceivingData if address is invalid (Philippe Mathieu-Daudé)  [Orabug: 31414336]  {CVE-2020-13253}
- hw/sd/sdcard: Update coding style to make checkpatch.pl happy (Philippe Mathieu-Daudé)  [Orabug: 31414336] 
- hw/sd/sdcard: Do not allow invalid SD card sizes (Philippe Mathieu-Daudé)  [Orabug: 31414336]  {CVE-2020-13253}
- hw/sd/sdcard: Simplify realize() a bit (Philippe Mathieu-Daudé)  [Orabug: 31414336] 
- hw/sd/sdcard: Restrict Class 6 commands to SCSD cards (Philippe Mathieu-Daudé)  [Orabug: 31414336] 
- libslirp: Update to v4.3.1 to fix CVE-2020-10756 (Karl Heubaum)  [Orabug: 31604999]  {CVE-2020-10756}
- Document CVEs as fixed 2/2 (Karl Heubaum)  [Orabug: 30618035]  {CVE-2017-18043} {CVE-2018-10839} {CVE-2018-11806} {CVE-2018-12617} {CVE-2018-15746} {CVE-2018-16847} {CVE-2018-16867} {CVE-2018-17958} {CVE-2018-17962} {CVE-2018-17963} {CVE-2018-18849} {CVE-2018-19364} {CVE-2018-19489} {CVE-2018-3639} {CVE-2018-5683} {CVE-2018-7550} {CVE-2018-7858} {CVE-2019-12068} {CVE-2019-15034} {CVE-2019-15890} {CVE-2019-20382} {CVE-2020-10702} {CVE-2020-10761} {CVE-2020-11102} {CVE-2020-11869} {CVE-2020-13361} {CVE-2020-13765} {CVE-2020-13800} {CVE-2020-1711} {CVE-2020-1983} {CVE-2020-8608}
- Document CVEs as fixed 1/2 (Karl Heubaum)  [Orabug: 30618035]  {CVE-2017-10806} {CVE-2017-11334} {CVE-2017-12809} {CVE-2017-13672} {CVE-2017-13673} {CVE-2017-13711} {CVE-2017-14167} {CVE-2017-15038} {CVE-2017-15119} {CVE-2017-15124} {CVE-2017-15268} {CVE-2017-15289} {CVE-2017-16845} {CVE-2017-17381} {CVE-2017-18030} {CVE-2017-2630} {CVE-2017-2633} {CVE-2017-5715} {CVE-2017-5753} {CVE-2017-5754} {CVE-2017-5931} {CVE-2017-6058} {CVE-2017-7471} {CVE-2017-7493} {CVE-2017-8112} {CVE-2017-8309} {CVE-2017-8379} {CVE-2017-8380} {CVE-2017-9503} {CVE-2017-9524} {CVE-2018-12126} {CVE-2018-12127} {CVE-2018-12130} {CVE-2018-16872} {CVE-2018-20123} {CVE-2018-20124} {CVE-2018-20125} {CVE-2018-20126} {CVE-2018-20191} {CVE-2018-20216} {CVE-2018-20815} {CVE-2019-11091} {CVE-2019-12155} {CVE-2019-14378} {CVE-2019-3812} {CVE-2019-5008} {CVE-2019-6501} {CVE-2019-6778} {CVE-2019-8934} {CVE-2019-9824}
- qemu-kvm.spec: Add .spec file for OL8 (Karl Heubaum)  [Orabug: 30618035] 
- qemu.spec: Add .spec file for OL7 (Karl Heubaum)  [Orabug: 30618035] 
- qemu-submodule-init: Add Git submodule init script (Karl Heubaum)  [Orabug: 30618035] 
- vhost.conf: Initial vhost.conf (Karl Heubaum)  [Orabug: 30618035] 
- parfait: Add buildrpm/parfait-qemu.conf (Karl Heubaum)  [Orabug: 30618035] 
- virtio: Set PCI subsystem vendor ID to Oracle (Karl Heubaum)  [Orabug: 30618035] 
- qemu_regdump.py: Initial qemu_regdump.py (Karl Heubaum)  [Orabug: 30618035] 
- qmp-regdump: Initial qmp-regdump (Karl Heubaum)  [Orabug: 30618035] 
- bridge.conf: Initial bridge.conf (Karl Heubaum)  [Orabug: 30618035] 
- kvm.conf: Initial kvm.conf (Karl Heubaum)  [Orabug: 30618035] 
- 80-kvm.rules: Initial 80-kvm.rules (Karl Heubaum)  [Orabug: 30618035] 
- exec: set map length to zero when returning NULL (Prasad J Pandit)  [Orabug: 31439733]  {CVE-2020-13659}
- megasas: use unsigned type for reply_queue_head and check index (Prasad J Pandit)  [Orabug: 31414338]  {CVE-2020-13362}
- memory: Revert "memory: accept mismatching sizes in memory_region_access_valid" (Michael S. Tsirkin)  [Orabug: 31439736] [Orabug: 31452202]  {CVE-2020-13754} {CVE-2020-13791}