Copy Fail is documented in VSA-2026-013, we don't have one for Dirty Frag yet as we're still investigating XCP-ng side regarding it.
For XOA, unattended updates should have installed the patched debian kernel, you just need to reboot it.
Debian security tracker states they are both fixed:
@ditzy-olive Hello, be careful with that, your script installs it to /etc/sysconfig/iptables which is part of the iptables-services package, so it could be overwritten by a package update.
Granted, I don't think we ever updated it, but an upgrade to a newer version (when v9.0 comes) will for sure replace it.
@dcskinner No this is not intend, I just ran some tests, my host has a bond for management, which showed up in the dropdown.
Then I created a second bond, it did not show in the dropdown until I actually configure it. When creating it, it was actually created by default with "mode=none" so I went to the host's network tab, chose static and assigned an IP to it and it was then showing in the dropdown. Are you sure your bond is properly configured?
