CTX209497
2016-04-18
1970-01-01
Download XS62ESP1043.zip. /supportkc/filedownload?uri=/filedownload/ CTX209497/XS62ESP1043.zip. Citrix Support. ...

Who Should Install This Hotfix?

This is a hotfix for customers running XenServer 6.2.0 Service Pack 1. All customers who are affected by the issues described in??CTX209443: Citrix XenServer Multiple Security Updates??should install this hotfix.

Issues Resolved In This Hotfix

This security hotfix addresses the vulnerabilities as described in the Security Bulletin above. In addition, it resolves the following issues:

  • After installing the hotfix XS62ESP1034, certain security programs or debuggers can cause Windows VMs to reboot on Intel hardware.
  • After installing the hotfix XS62ESP1039, in scenarios where a XenServer host handles numerous concurrent connections and requests from XenAPI clients (including XenCenter and other hosts in the pool), the service that handles the incoming connections can crash. This causes the XenAPI clients to lose connection to the XenServer host. Perform the following steps to recover the connection, prior to installing this hotfix:
    1. Connect to the control domain (dom0). You can use either SSH, or serial console, or use the physical keyboard-and-monitor.
    2. Run the command??xe-toolstack-restart.

This hotfix also includes the following previously released hotfixes:

Installing the Hotfix

Customers should use either XenCenter or the XenServer Command Line Interface (CLI) to install this update. When the installation is complete, restart the server for the update to take effect. As with any software update, back up your data before applying this hotfix. Citrix recommends updating all hosts within a pool sequentially. Upgrading of hosts should be scheduled to minimize the amount of time the pool runs in a "mixed state" where some hosts are upgraded and some are not. Running a mixed pool of updated and non-updated hosts for general operation is not supported.

Note:??The attachment to this article is a zip file. It contains both the hotfix update package and the source code for any modified open source components. The source code is not necessary for hotfix installation: it is provided to fulfill licensing obligations.

Installing the update by using XenCenter

  1. Download the update to a known location on a computer that has XenCenter installed.
  2. In XenCenter, on the??Tools??menu, select??Install Update. The Install Update wizard appears.
  3. Click??Next??to start the Wizard.
  4. Click??Add??to upload a new update.
  5. Browse to the location where you downloaded the hotfix, select it and then click??Open.
  6. From the list of updates select??XS62ESP1043.xsupdate??and then click??Next.
  7. Select the hosts to which you want to apply the hotfix and then click??Next.
  8. Follow the recommendations to resolve any upgrade prechecks and then click??Next.
  9. Choose how to perform post-update tasks. In the??Post update options??section, select automatically or manually, and then click??Install update.
  10. When the installation process is complete, click??Finish??to exit the wizard.
  11. NOTES:

  • Customers who select to??manually??perform the post-update tasks, must ensure to do so after installing the hotfix.
  • Customers who select to??automatically??perform the post-update tasks should note that XenCenter restarts each host sequentially starting with the Pool Master. Where possible, the VMs are migrated to other running hosts to avoid VM downtime. When the Pool Master is restarting, XenCenter cannot monitor the pool.

Installing the update by using the xe Command Line Interface

  1. Download the update file to a known location.
  2. Extract the xsupdate file from the zip.
  3. Upload the xsupdate file to the Pool Master by entering the following commands:??
    (Where??hostname??is the Pool Master's IP address or DNS name.)

    xe patch-upload -s??<hostname>??-u root -pw??<password>??file-name=<path_to_update_file>\XS62ESP1043.xsupdate

    XenServer assigns the update file a UUID which this command prints. Note the UUID.

    15929d8a-2887-4945-9b07-3ff874a4a705


  4. Apply the hotfix to all hosts in the pool, specifying the UUID of the hotfix:

    xe -s??<hostname>??-u root -pw??<password>??patch-pool-apply uuid=15929d8a-2887-4945-9b07-3ff874a4a705

  5. Verify that the update was applied by using the??patch-list??command.

    xe patch-list -s??<hostname>??-u root -pw??<password>??name-label=XS62ESP1043

    If the update is successful, the??hosts??field contains the UUIDs of the hosts to which this patch was successfully applied. This should be a complete list of all hosts in the pool.
  6. To verify in XenCenter that the update is applied correctly, select the Pool, and then click the??General??tab. This displays the Pool properties. In the??Updates??section, ensure that the update is listed as??Fully Applied.
  7. The hotfix is applied to all hosts in the pool, but does not take effect until each host restarts. For each host, migrate the VMs that you wish to keep running, and shut down the remaining VMs before restarting the host.

??

Files

Hotfix File

Component Details
Hotfix Filename XS62ESP1043.xsupdate
Hotfix File md5sum da2cc62b9c5aded8acbe4b3377c42c8b
Hotfix Source Filename XS62ESP1043-src-pkgs.tar.bz2
Hotfix Source File md5sum 0fdc1fad31237d26cdae1c21e4d91c77
Hotfix Zip Filename XS62ESP1043.zip
Hotfix Zip File md5sum b08ecb1fd6665e9b6b86d65b13df3be7

Files Updated

blktap-2.0.90.xs735-xs6.2.0.i686.rpm
ca-certificates-2012.87-1.noarch.rpm
e2fsprogs-1*.rpm
e2fsprogs-libs-*.rpm
guest-templates-1.8.0-46.i686.rpm
kexec-tools-2.0.4-1170.148.i386.rpm
make-3.81-3.el5.i386.rpm
net-snmp-5.3.2.2-25.xs1170.i386.rpm
net-snmp-libs-5.3.2.2-25.xs1170.i386.rpm
nfs-utils-1.0.9-54.xs1170.i386.rpm
openssl-0.9.8e-27.el5_10.3.i386.rpm
openssl-perl-0.9.8e-27.el5_10.3.i386.rpm
openssl-wrapper-0.1-59.i686.rpm
openssl-xs-1.0.1e-51.xs22.i386.rpm
openssl-xs-libs-1.0.1e-51.xs22.i386.rpm
openvswitch-1.4.6-143.9926.i386.rpm
perf-tools-rrdd-gpumon-0.1.2-136.i686.rpm
perf-tools-rrdd-plugins-0.1.2-136.i686.rpm
rrdd-plugins-chkconfig
sm-1.8.0-xs2193.i686.rpm
sm-closed-6.2.0-275.i686.rpm
stunnel-4.15-18.i686.rpm
vgpu-6.2.0-65.i686.rpm
vhd-tool-0.7.4-2.i686.rpm
xapi-core-0.2-6241.i686.rpm
xapi-networkd-0.2-6241.i686.rpm
xapi-rrdd-0.2-6241.i686.rpm
xapi-xe-0.2-6241.i686.rpm
xapi-xenopsd-0.2-6241.i686.rpm
xcp-python-libs-1.8.0-xs110.noarch.rpm
xen-device-model-1.8.0-122.7613.i686.rpm
xen-hypervisor-4.1.5-1.8.0.667.23873.i686.rpm
xen-tools-4.1.5-1.8.0.667.23873.i686.rpm
xenserver-transfer-vm-6.2.0-124454c.noarch.rpm
opt/xensource/sm/iSL/cvsm_smis_vendor_options.conf
opt/xensource/sm/iSL/isl.conf
opt/xensource/sm/iSL/libdell_equallogic.so.1.0
opt/xensource/sm/iSL/libnetapp.so.1.0
opt/xensource/sm/iSL/libsmis_storage_system.so.1.0
opt/xensource/sm/iSL/sl_adt_delleql.py
opt/xensource/sm/iSL/sl_adt_netapp.py
opt/xensource/sm/iSL/sl_adt_remote.py
opt/xensource/sm/iSL/sl_adt_smis.py
usr/lib/libpsapi-2.1.2.so
usr/sbin/xen-bugtool*

??

Applicable Products

 

Join the conversation

Citrix Discussions

Open a case

Citrix Support

特别说明


本文来源为Citrix.com所有,翻译后版权归翻译者所有.如需转载请注明出处.

文档版本


.

广告招租


最新留言


.

广告招租


.