NEWS: Add entries for libxl changes during 8.0.0 development

Signed-off-by: Jim Fehlig <jfehlig@suse.com>
Reviewed-by: Andrea Bolognani <abologna@redhat.com>

diff --git a/NEWS.rst b/NEWS.rst
index e7d53167219fb022949473578ff71621a9c853a9..313b4f52b6c0c74b0e5e2a9b1974964b020785a7 100644 (file)
--- a/NEWS.rst
+++ b/NEWS.rst
@@ -13,6 +13,11 @@ v8.0.0 (unreleased)
 
 * **Security**
 
+  * libxl: Fix potential deadlock and crash (CVE-2021-4147)
+
+    A rogue guest could continuously reboot itself and cause libvirtd on the
+    host to deadlock or crash, resulting in a denial of service condition.
+
 * **Removed features**
 
   * qemu: Explicitly forbid live changing nodeset for strict numatune
@@ -44,6 +49,8 @@ v8.0.0 (unreleased)
 
 * **Improvements**
 
+  * libxl: Implement the virDomainGetMessages API
+
 * **Bug fixes**