Who Should Install This Hotfix?
This is a hotfix for customers running XenServer 7.3.
All customers who are affected by the issues described in CTX234679 – Citrix XenServer Multiple Security Updates should install this hotfix.
Information About this Hotfix
|Content live patchable**
|Baselines for Live Patch
||Published on May 8, 2018
|* Important: If you have previously disabled microcode loading on your XenServer host or pool. You must enable microcode loading again after applying this hotfix. For more information, see How to disable microcode loading on a XenServer pool.
|** Available to Enterprise Customers.
Issues Resolved In This Hotfix
This security hotfix addresses the vulnerabilities as described in the Security Bulletin above.
This hotfix also includes the following previously released hotfix:
Installing the Hotfix
Customers should use either XenCenter or the XenServer Command Line Interface (CLI) to apply this hotfix. When the installation is complete, see the Post-update tasks in the table Information About this Hotfix for information about any post-update tasks you should perform for the update to take effect. As with any software update, back up your data before applying this update. Citrix recommends updating all hosts within a pool sequentially. Upgrading of hosts should be scheduled to minimize the amount of time the pool runs in a “mixed state” where some hosts are upgraded and some are not. Running a mixed pool of updated and non-updated hosts for general operation is not supported.
Note: The attachment to this article is a zip file. It contains the hotfix update package only. Click the following link to download the source code for any modified open source components XS73E004-sources.iso. The source code is not necessary for hotfix installation: it is provided to fulfill licensing obligations.
Installing the Hotfix by using XenCenter
Choose an Installation Mechanism
There are three mechanisms to install a hotfix:
- Automated Updates
- Download update from Citrix
- Select update or Supplemental pack from disk
The Automated Updates feature is available for XenServer Enterprise Edition customers, or to those who have access to XenServer through their XenApp/XenDesktop entitlement. For information about installing a hotfix using the Automated Updates feature, see the section Applying Automated Updates in the XenServer 7.3 Installation Guide.
For information about installing a hotfix using the Download update from Citrix option, see the section Applying an Update to a Pool in the XenServer 7.3 Installation Guide.
The following section contains instructions on option (3) installing a hotfix that you have downloaded to disk:
- Download the hotfix to a known location on a computer that has XenCenter installed.
- Unzip the hotfix zip file and extract the .iso file
- In XenCenter, on the Tools menu, select Install Update. This displays the Install Update wizard.
- Read the information displayed on the Before You Start page and click Next to start the wizard.
- Click Browse to locate the iso file, select XS73E004.iso and then click Open.
- Click Next.
- Select the pool or hosts you wish to apply the hotfix to, and then click Next.
- The Install Update wizard performs a number of update prechecks, including the space available on the hosts, to ensure that the pool is in a valid configuration state. The wizard also checks whether the hosts need to be rebooted after the update is applied and displays the result.
Follow the on-screen recommendations to resolve any update prechecks that have failed. If you want XenCenter to automatically resolve all failed prechecks, click Resolve All. When the prechecks have been resolved, click Next.
- Choose the Update Mode. Review the information displayed on the screen and select an appropriate mode.
Note: If you click Cancel at this stage, the Install Update wizard reverts the changes and removes the update file from the host.
- Click Install update to proceed with the installation. The Install Update wizard shows the progress of the update, displaying the major operations that XenCenter performs while updating each host in the pool.
- When the update is applied, click Finish to close the wizard.
- If you chose to carry out the post-update tasks, do so now.
Installing the Hotfix by using the xe Command Line Interface
- Download the hotfix file to a known location.
- Extract the .iso file from the zip.
- Upload the .iso file to the Pool Master by entering the following commands:
(Where -s is the Pool Master’s IP address or DNS name.)
xe -s <server> -u <username> -pw <password> update-upload file-name=<filename>XS73E004.iso
XenServer assigns the update file a UUID which this command prints. Note the UUID.
- Apply the update to all hosts in the pool, specifying the UUID of the update:
xe update-pool-apply uuid=<UUID_of_file>
Run the following command if you would like to apply the hotfix for a individual host:
xe update-apply host-uuid=<UUID_of_host> uuid=<UUID_of_file>
Alternatively, if you need to update and restart hosts in a rolling manner, you can apply the update file to an individual host by running the following:
xe upload-apply host-uuid=<UUID_of_host> uuid=<UUID_of_file>
- Verify that the update was applied by using the update-list command.
xe update-list -s <server> -u root -pw <password> name-label=XS73E004
If the update is successful, the hosts field contains the UUIDs of the hosts to which this patch was successfully applied. This should be a complete list of all hosts in the pool.
- If the hotfix is applied successfully, carry out any specified post-update task on each host, starting with the master.
|Hotfix File sha256
|Hotfix Source Filename
|Hotfix Source File sha256
|Hotfix Zip Filename
|Hotfix Zip File sha256
|Size of the Zip file
If you experience any difficulties, contact Citrix Technical Support.