Security and bugfix update (PCI passthrough, UEFI)
A security update is available for the two supported releases of XCP-ng: 8.1 and 8.2.
To update, follow this guide. You can also join the discussion on our community forum. Hosts reboot necessary after this update.
Related: Citrix Hypervisor Security Bulletin
Security fix
A security issue in the Xen hypervisor may allow guest VMs with a PCI passthrough device to compromise the host.
Reference: http://xenbits.xen.org/xsa/advisory-355.html
UEFI support fixes in XCP-ng 8.2
Two issues have been fixed in the UEFI support for guests in XCP-ng 8.2:
- Failure when attempting to clone a UEFI VM
- In some situations, UEFI Windows VM restored from a backup made with XCP-ng 8.1 would fail to start.