xen (4.20.2+7-g1badcf5035-1) [PTS] [DDPO]

OK: VCS matches the version in the archive

Git: https://salsa.debian.org/xen-team/debian-xen.git
JSON
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: master
Path: debian/changelog
Repo size: 69300224
Browser: https://salsa.debian.org/xen-team/debian-xen
Last scan: 2025-11-30 19:32:20+00
Next scan: 2025-12-06 05:37:00+00
Open issues: 14
Merge requests: 6
CI pipeline status: success

Debian changelog in Git:

xen (4.20.2+7-g1badcf5035-1) unstable; urgency=medium

  Significant changes:
  * Update to new upstream version 4.20.2+7-g1badcf5035, which also contains
    security fixes for the following issues:
    (Closes: #1105193) (Closes: #1120075)
    - x86: Indirect Target Selection
      XSA-469 CVE-2024-28956
    - x86: Incorrect stubs exception handling for flags recovery
      XSA-470 CVE-2025-27465
    - x86: Transitive Scheduler Attacks
      XSA-471 CVE-2024-36350 CVE-2024-36357
    - Multiple vulnerabilities in the Viridian interface
      XSA-472 CVE-2025-27466 CVE-2025-58142 CVE-2025-58143
    - Arm issues with page refcounting
      XSA-473 CVE-2025-58144 CVE-2025-58145
    - x86: Incorrect input sanitisation in Viridian hypercalls
      XSA-475 CVE-2025-58147 CVE-2025-58148
    - Incorrect removal of permissions on PCI device unplug
      XSA-476 CVE-2025-58149
  * Note that the following XSA are not listed, because...
    - XSA-468 applies to Windows PV drivers
    - XSA-474 applies to XAPI which is not included in Debian

  Packaging minor fixes and improvements:
  * debian/salsa-ci.yml: adjust for new salsa-ci pipeline

 -- Maximilian Engelhardt <maxi@daemonizer.de>  Fri, 28 Nov 2025 00:14:24 +0100

This branch is even with tag archive/debian/4.20.2+7-g1badcf5035-1