Security and bugfix update (PCI passthrough, UEFI)

A security update is available for the two supported releases of XCP-ng: 8.1 and 8.2.

To update, follow this guide. You can also join the discussion on our community forum. Hosts reboot necessary after this update.

Related: Citrix Hypervisor Security Bulletin

Security fix

A security issue in the Xen hypervisor may allow guest VMs with a PCI passthrough device to compromise the host.

Reference: http://xenbits.xen.org/xsa/advisory-355.html

UEFI support fixes in XCP-ng 8.2

Two issues have been fixed in the UEFI support for guests in XCP-ng 8.2:

  • Failure when attempting to clone a UEFI VM
  • In some situations, UEFI Windows VM restored from a backup made with XCP-ng 8.1 would fail to start.