Description of Problem
A memory management vulnerability has been identified in Citrix XenServer that could allow a malicious administrator of a PV guest to crash, or potentially compromise, a host server.
This vulnerability has been assigned the following CVE:
• CVE-2013-1432: Page reference counting error
This vulnerability affects all currently supported versions of Citrix XenServer between versions 5.6 and 6.2 inclusive. However, customers using Citrix XenServer 5.0 Update 3 or Citrix XenServer 5.5 Update 2 should review the updated security bulletin Security vulnerability in Citrix XenServer PV guest kernel loading could result in privilege escalation for further guidance relating to their deployments.
Customers running only HVM guests (e.g. Microsoft Windows) are not at risk from exploitation of this issue.
What Customers Should Do
Hotfixes have been released to address this issue. Citrix recommends that affected customers install the relevant hotfix, which can be downloaded from the following locations:
Citrix XenServer 6.2: CTX138349– Hotfix XS62E002 – For XenServer 6.2.0
Citrix XenServer 6.1: CTX138348– Hotfix XS61E026 – For XenServer 6.1.0
Citrix XenServer 6.0.2: CTX138347- Hotfix XS602E026 – For XenServer 6.0.2
Customers using Citrix XenServer 6.0.2 in the Common Criteria evaluated configuration should apply the following hotfix: CTX138037 – Hotfix XS602ECC006 – For XenServer 6.0.2 Common Criteria
Citrix XenServer 6.0.0: CTX138346 – Hotfix XS60E034 – For XenServer 6.0
Citrix XenServer 5.6 Service Pack 2: CTX138371 – Hotfix XS56ESP2032 – For XenServer 5.6 Service Pack 2
Citrix XenServer 5.6 Feature Pack 1: CTX138344 – Hotfix XS56EFP1020 – For XenServer 5.6 Feature Pack 1
Citrix XenServer 5.6: CTX138343 – Hotfix XS56E021 – For XenServer 5.6
Customers using Citrix XenServer 5.6 in the Common Criteria evaluated configuration should apply the following hotfix: CTX138032 – Hotfix XS56ECC009 – For XenServer 5.6 Common Criteria
Citrix XenServer 5.5 Update 2: CTX138342 – Hotfix XS55EU2018 – For XenServer 5.5 Update 2
Citrix XenServer 5.0 Update 3: CTX138341 – Hotfix XS50EU3018 – For XenServer 5.0 Update 3
What Citrix Is Doing
Obtaining Support on This Issue
If you require technical assistance with this issue, please contact Citrix Technical Support. Contact details for Citrix Technical Support are available at http://www.citrix.com/site/ss/supportContacts.asp.
Reporting Security Vulnerabilities to Citrix
Citrix welcomes input regarding the security of its products and considers any and all potential vulnerabilities seriously. If you would like to report a security issue to Citrix, please compose an e-mail to firstname.lastname@example.org stating the exact version of the product in which the vulnerability was found and the steps needed to reproduce the vulnerability.