XenServer and Citrix Hypervisor Security Update for CVE-2024-28956

Description of Problem Intel has disclosed a security issue affecting Intel CPUs. This CPU hardware issue may allow privileged code in a guest VM to infer some memory content of another VM that is running on the same CPU core. Although this is not a vulnerability in the XenServer or Citrix...

CVE-2024-39920

The TCP protocol in RFC 9293 has a timing side channel that makes it easier for remote attackers to infer the content of one TCP connection from a client system to any server, when that client system is concurrently obtaining TCP data at a slow rate from an attacker-controlled server, aka the...