[15:4.2.1-5.el7] - qemu.spec: use --tls-priority=NORMAL for OL7 - hostmem: fix default prealloc-threads count [Orabug: 32472127] - hostmem: introduce prealloc-threads property - qom: introduce object_register_sugar_prop - migration/multifd: Do error_free after migrate_set_error to avoid memleaks - multifd/tls: fix memoryleak of the QIOChannelSocket object when cancelling migration - migration/multifd: fix hangup with TLS-Multifd due to blocking handshake - migration/tls: add trace points for multifd-tls - migration/tls: add support for multifd tls-handshake - migration/tls: extract cleanup function for common-use - migration/multifd: fix memleaks in multifd_new_send_channel_async - migration/multifd: fix nullptr access in multifd_send_terminate_threads - migration/tls: add tls_hostname into MultiFDSendParams - migration/tls: extract migration_tls_client_create for common-use - migration/tls: save hostname into MigrationState - tests/qtest: add a test case for pvpanic-pci - pvpanic : update pvpanic spec document - hw/misc/pvpanic: add PCI interface support - hw/misc/pvpanic: split-out generic and bus dependent code - 9pfs: Fully restart unreclaim loop [Orabug: 32441198] {CVE-2021-20181} - ide: atapi: check logical block address and read size [Orabug: 32393835] {CVE-2020-29443} - Document CVE-2019-20808 as fixed [Orabug: 32339196] {CVE-2019-20808} - block/iscsi:fix heap-buffer-overflow in iscsi_aio_ioctl_cb [Orabug: 32339207] {CVE-2020-11947} - net: remove an assert call in eth_get_gso_type [Orabug: 32102583] {CVE-2020-27617} - nvdimm: honor -object memory-backend-file, readonly=on option [Orabug: 32265408] - hostmem-file: add readonly=on|off option [Orabug: 32265408] - memory: add readonly support to memory_region_init_ram_from_file [Orabug: 32265408]