New security update candidates for XCP-ng 8.3 LTS (kernel)
This release batch contains security fix on kernel, version update, some bug fixes and a few improvements.
What changed
Virtualization & System
kernel: Fix Vulnerability: CVE-2026-46243
Fixed the CIFSwitch security vulnerability that could allow privilege escalation from a user with low privileges.
intel-microcode: Fix a hang on boot on some platforms (Revert Granite Rapids AP/SP ucode back to IPU 2026.1)
Drivers
intel-ice: Update to 2.4.5
Adds support for E825-C and E830.
Adds support for Link Aggregation (LAG).
Various stability, performance, and bug-fix updates.
Versions:
intel-ice: 1.15.5-2.xcpng8.3 -> 2.4.5-8.1.1.xcpng8.3
intel-microcode: 20260416-1.xcpng8.3 -> 20260416-2.xcpng8.3
kernel: 4.19.19-8.0.46.5.xcpng8.3 -> 4.19.19-8.0.46.6.xcpng8.3
Test on XCP-ng 8.3
yum clean metadata --enablerepo=xcp-ng-testing,xcp-ng-candidates
yum update --enablerepo=xcp-ng-testing,xcp-ng-candidates
reboot
The usual update rules apply: pool coordinator first, etc.
What to test
As usual, normal use and anything else you want to test.
Test window before official release of the updates
~3 days
We would like to thank users who reported feedback since our last call for testing:
@Andrew, @acebmxer, @flakpyro, @jeffberntsen, @majorp93, @marcoi, @ph7, @pilow, @probain.
