CTX209495
2016-04-18
1970-01-01

Hotfix XS602ECC031 - For XenServer 6.0.2 Common Criteria

Download XS602ECC031.zip. /supportkc/filedownload?uri=/filedownload/ CTX209495/XS602ECC031.zip. Citrix Support. ...


Who Should Install This Hotfix?

This is a hotfix for customers running Citrix XenServer 6.0.2 Common Criteria. All customers who are affected by the issues described in??CTX209443: Citrix XenServer Multiple Security Updates??should install this hotfix.

Issues Resolved in This Hotfix

This security hotfix addresses the vulnerabilities as described in the Security Bulletin above. In addition, it resolves the following issue:

  • After installing the hotfix XS602ECC024, certain security programs or debuggers can cause Windows VMs to reboot on Intel hardware.

Note:??Customers who deploy XenServer in the Common Criteria evaluated configuration should note that this hotfix does impact the security claims listed in the product's Security Target.

This hotfix also includes the following previously released hotfixes:

Installing the Hotfix

Customers should use either XenCenter or the XenServer Command Line Interface (CLI) to install this update. Once the update is installed, the server must be restarted for the changes to take effect. As with any software update, back up your data before applying this hotfix. Citrix recommends updating all hosts within a pool sequentially. Updating of hosts should be scheduled to minimize the amount of time the pool runs in a "mixed state" where some hosts are updated and some have not. Running a mixed pool of updated and non-updated hosts for general operation is not supported.

NOTE:??The attachment to this article is a zip file. It contains both the hotfix update package and the source code for any modified open source components. The source code is not necessary for hotfix installation: it is provided to fulfil licensing obligations.

Installing the update by using XenCenter

  1. Download the update to a known location on a computer where XenCenter is also installed.
  2. In XenCenter, on the??Tools??menu, select??Install New Update. The Install Update wizard appears.
  3. Click??Next??to start the Wizard.
  4. Click??Add??to upload the update.
  5. Browse to the location where you downloaded the hotfix, select it, and then click??Open.
  6. From the list of updates select??XS602ECC031.xsupdate??and then click??Next.
  7. Select the hosts you wish to apply the hotfix to, and then click??Next.
  8. Follow the recommendations to resolve any upgrade prechecks and then click??Next.
  9. Choose how to perform post-update tasks. In the??Post update options??section, select??automatically??or??manually, and then click??Install update.
  10. When the installation process is complete, click??Finish??to exit the wizard.

NOTES:

  • If you select??manually??to perform the post-update tasks, you must ensure to do so after installing the hotfix.
  • If you select??automatically??to perform the post-update tasks, the XenCenter controlled upgrade process restarts each host sequentially starting with the Pool Master, where possible VMs are migrated to other running hosts to avoid VM downtime. When restarting the Pool Master, XenCenter cannot monitor the pool.

Installing the update by using the xe Command Line Interface

  1. Download the update file to a known location.
  2. Extract the xsupdate file from the zip.
  3. Upload the xsupdate file to the Pool Master by entering the following commands:??
    (Where??hostname??is the Pool Master's IP address or DNS name.)

    xe patch-upload -s??<hostname>??-u root -pw??<password>??file-name=<path_to_update_file>\XS602ECC031.xsupdate

    XenServer assigns the update file a UUID which this command prints. Note the UUID.

    d75705d9-64a8-46a4-afdd-c5351642621c


  4. Apply the hotfix to all hosts in the pool, specifying the UUID of the hotfix:

    xe -s??<hostname>??-u root -pw??<password>??patch-pool-apply uuid=d75705d9-64a8-46a4-afdd-c5351642621c

  5. Verify that the update was applied by using the??patch-list??command.

    xe patch-list -s??<hostname>??-u root -pw??<password>??name-label=XS602ECC031

    If the update is successful, the??hosts??field contains the UUIDs of the hosts this patch was successfully applied to. This should be a complete list of all hosts in the pool.
  6. To verify in XenCenter that the update has been applied correctly, select the Pool, and then click the??General??tab. This displays the Pool properties. In the??Updates??section, ensure that the update is listed as??Applied.
  7. The hotfix is applied to all hosts in the pool, but it will not take effect until each host has been rebooted. For each host, migrate the VMs that you wish to keep running, and shut down the remaining VMs before rebooting the host.

??

Files

Hotfix File

Component Details
Hotfix Filename XS602ECC031.xsupdate
Hotfix File md5sum 7e766bbcc02292cf8d6b731d4603673c
Hotfix Source Filename XS602ECC031-src-pkgs.tar.bz2
Hotfix Source File md5sum a5f5e56d0b2071c96f6b8ff858351b1e
Hotfix Zip Filename XS602ECC031.zip
Hotfix Zip File md5sum 534d12edbf7fe1f2e2981fc2fd360968

Files Updated

ca-certificates-2012.87-1.noarch.rpm
make-3.81-3.el5.i386.rpm
net-snmp-5.3.2.2-25.xs764.i386.rpm
net-snmp-libs-5.3.2.2-25.xs764.i386.rpm
openssl-0.9.8e-27.el5_10.3.i386.rpm
openssl-wrapper-0.1-59.i686.rpm
openssl-xs-1.0.1e-51.xs22.i386.rpm
openssl-xs-libs-1.0.1e-51.xs22.i386.rpm
openvswitch-1.0.99-107.9874.i386.rpm
stunnel-4.15-17.i686.rpm
xen-device-model-6.0.2-65.7582.i686.rpm
xen-hypervisor-4.1.2-6.0.2.363.23467.i686.rpm
xen-tools-4.1.2-6.0.2.363.23467.i686.rpm
xenserver-transfer-vm-6.0.2-124596c.noarch.rpm

??

Applicable Products

 

Join the conversation

Citrix Discussions

Open a case

Citrix Support

特别说明

本文来源为Citrix.com所有,翻译后版权归翻译者所有.如需转载请注明出处.

相关文档

PREV

上一篇
Hotfix XS60E060 - For XenServer 6.0

NEXT

下一篇
Hotfix XS602E054 - For XenServer 6.0.2

文档版本

.

广告招租

最新留言

.

广告招租

.