Hotfix XS82E009 - For Citrix Hypervisor 8.2

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2. All customers who are affected by the issues described inCTX284874 - Citrix Hypervisor Multiple Security Updatesshould install this hotfix. Information About this Hotfix Component| Details ---|---...

Hotfix XS81E001 - For Citrix Hypervisor 8.1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.1. Note : EnsurethatyouuseXenCenter8.1.2orlatertoinstallthishotfix.ThelatestversionofXenCenterisavailablefrom the CitrixHypervisorDownloadsite. Information About this Hotfix Component| Details ---|---...

Workload Balancing 8.2.1 - For Citrix Hypervisor 8.2

Who Should Install This Update? This Workload Balancing virtual appliance update is for customers who use the Workload Balancing feature of Citrix Hypervisor 8.2. It constitutes the following deliverable: File Name| CitrixHypervisor-8.2.1-wlb.xva ---|--- Description| This file provides an updated...

Hotfix XS80E004 - For Citrix Hypervisor 8.0

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.0. Information About this Hotfix Component| Details ---|--- Prerequisite| None Post-update tasks| Restart Host Content live patchable| Yes Baselines for Live Patch| XS80E003 Revision History| Published on A...

Hotfix XS81E003 - For Citrix Hypervisor 8.1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.1. All customers who are affected by the issues described inCTX270837 - Citrix Hypervisor Multiple Security Updatesshould install this hotfix. Note: Ensure that you use XenCenter 8.1.2 or later to install...

Hotfix XS82E003 - For Citrix Hypervisor 8.2

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2. All customers who are affected by the issues described inCTX280451 - Citrix Hypervisor Multiple Security Updatesshould install this hotfix. Information About this Hotfix Component| Details ---|---...

Updates to XenBus Windows I/O driver - For Citrix Hypervisor and XenServer

Who Should Read This Article? This information is for customers using Citrix Hypervisor or XenServer who are entitled to receive automatic Windows I/O driver updates on their Windows VMs. Latest versions The following versions of XenBus are the latest that are available through Windows Automatic...

Hotfix XS82E004 - For Citrix Hypervisor 8.2

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2. Information About this Hotfix Component| Details ---|--- Prerequisite| None Post-update tasks| None Content live patchable| No Baselines for Live Patch| N/A Revision History| Published on Oct 13, 2020...

Enable mitigations for CVE-2018-12207

Depending on your hardware, your Citrix Hypervisor or XenServer installation may be affected by the security issue with the identifierCVE-2018-12207. Citrix provides the following hotfixes to mitigate this issue: XS70E075, XS71ECU2024, XS76E012,XS80E008. For more information, seeCitrix Hypervisor...

Hotfix XS80E008 - For Citrix Hypervisor 8.0

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.0. All customers who are affected by the issues described inCTX263684 - Citrix Hypervisor Multiple Security Updatesshould install this hotfix. The mitigation for CVE-2018-12207 is disabled by default. You...

The vulnerability of Xen hypervisors arises from the simultaneous execution using a shared resource with incorrect synchronization. This “race condition” allows a malicious actor to cause a service failure or increase their privileges.

The vulnerability of Xen hypervisors arises from the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges...

Citrix Hypervisor Security Update

Description of Problem A security issue has been identified in Citrix Hypervisor that may allow privileged code running in a guest VM to infer details of some computations occurring in other VMs on the host. This may, for example, be used to infer a secret encryption key used by a web server in a...

Several vulnerabilities fixed in Citrix Hypervisor and XenDesktop

Citrix has fixed vulnerabilities in XenDesktop and Hypervisor. The vulnerabilities in XenDesktop allow a malicious party to to gain elevated privileges on a virtual Windows environment and execute code with SYSTEM privileges. The vulnerability in Hypervisor allows a remote malicious person to abl...

Xen Platypus information leak via power sidechannel (XSA-351)

An information disclosure vulnerability exists in power/energy monitoring interfaces, which can be used to create covert channels and infer the operations and data used by other contexts within the system. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid142889;...

System Management Mode deep dive: How SMM isolation hardens the platform

Ensuring that the platform firmware is healthy and trustworthy is fundamental to guaranteeing that powerful platform security features like Hypervisor-protected code integrity HVCI and Windows Defender Credential Guard are functioning as expected. Windows 10 achieves this by leveraging a...

[SECURITY] Fedora 32 Update: xen-4.13.2-1.fc32

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 33 Update: xen-4.14.0-9.fc33

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Fedora: Security Advisory for xen (FEDORA-2020-5398bfb466)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

VulnCheck KEV: CVE-2019-5544

VMware ESXi and Horizon Desktop as a Service DaaS OpenSLP contains a heap-based buffer overflow vulnerability that allows an attacker with network access to port 427 to overwrite the heap of the OpenSLP service to perform remote code execution...

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...