Who Should Install This Hotfix?
This is a hotfix for customers running Citrix XenServer 5.6 Feature Pack 1.
IMPORTANT: Any issued driver disk and the Driver Development Kit (DDK) for XenServer 5.6 Feature Pack 1 must be updated to be compatible with this hotfix. See CTX129293 - Driver Disks for XenServer Hotfix XS56EFP1004 for a list of the affected driver disks that must be updated.
Issue Resolved In This Hotfix
This hotfix addresses a security vulnerability, for more information refer to Citrix XenServer Denial of Service Vulnerabilities
The following issue is also resolved in this hotfix:
- Realtek 8169 network interfaces are unable to receive network traffic.
Installing the Hotfix
Customers should use either XenCenter or the XenServer Command Line Interface (CLI) to install this update. Once the update has installed, the server must be restarted for it to take effect. As with any software update, please back up your data before applying this hotfix. Citrix recommends updating all hosts within a pool sequentially. Upgrading of hosts should be scheduled to minimize the amount of time the pool runs in a "mixed state" where some hosts have been upgraded and some have not. Running a mixed pool of updated and non-updated hosts for general operation is not supported.
Installing the update using XenCenter
- Download the update to a known location on a computer that has XenCenter installed.
- In XenCenter, on the Tools menu, select Install New Update. This displays the Install Update wizard.
- Click Next to start the Wizard.
- Click Add... to upload a new update.
- Browse to the location where you downloaded the hotfix, select it, and then click Open.
- From the list of updates select XS56EFP1004.update and then click Next.
- Select the hosts you wish to apply the hotfix to, and then click Next.
- Follow the recommendations to resolve any upgrade prechecks.
- Click Install to start the installation.
Note: The XenCenter controlled upgrade process reboots each host sequentially starting with the Pool Master, where possible VMs will be migrated to other running hosts to avoid VM downtime. When the Pool Master is being rebooted, XenCenter will be unable to monitor the pool.
Installing the update using the off-host CLI
- Download the hotfix to a known location on a computer that has the XenServer CLI installed.
- Upload the hotfix to the pool or host you wish to apply it to:
xe -s
Here, -s <server> refers to the hostname.<server>-u root -pw<password>patch-upload file-name=<filename>
XenServer assigns the update file a UUID, which this command prints. Note the UUID:86a37f27-c19f-4bb8-8583-554b26919e87
- Apply the hotfix to the pool, specifying the UUID of the hotfix, as given by the upload command in the previous step:
xe -s
<server>-u root -pw<password>patch-pool-apply \
uuid=86a37f27-c19f-4bb8-8583-554b26919e87 - Verify that the update was applied by using the patch-list command. If the update has been successful, the hosts field will contain the host UUID.
- The hotfix is applied to all hosts in the pool, but it will not take effect until each host has been rebooted. For each host, migrate the VMs that you wish to keep running, and shutdown the remaining VMs before rebooting the host
Files
Hotfix File
| Hotfix file name | File MD5 sum |
|---|---|
| XS56EFP1004.xsupdate | 1b46381257ce8a0290a9e384c85420f0 |
Files Updated
| kernel-xen-2.6.32.12-0.7.1.xs5.6.100.314.170588.i686.rpm |
| md3000-rdac-modules-xen-2.6.32.12-0.7.1.xs5.6.100.314.170588-09.03.0C00.0437-647.i686.rpm |
| xen-hypervisor-3.4.2-5.6.100.701.20052.i686.rpm |