March 2026 Security Updates for XCP-ng 8.3 LTS
New security and maintenance updates are available for XCP-ng 8.3 LTS.
Host reboots are necessary after this update.
📋Summary
A new vulnerability, XSA-480, has been detected and fixed for Xen. In addition, we took this opportunity to release an update to ipmitool to fix a bug which was detected by users after the last round of updates.
🔒Security Updates
XEN
A vulnerability has been discovered on x86 Intel systems with EPT support, where unintended host or guest memory regions can be accessed from a VM priviledged code under specific circumstances.
This can lead to privilege escalation, denial of service (DoS) attacks affecting the entire host, or information leaks.
On XCP-ng 8.3, x86 HVM/PVH VMs can leverage this vulnerability.
References: VSA-2026-005: XSA-480
🪲 Other bugfixes and improvements
We also released a fix for ipmitool for which a regression was reported by our users after the publication of the previous round of updates. It would cause the lack of IPMI-related information in Xen Orchestra, with certain models of DELL servers, in relation to the command ipmitool lan print.
