Sergii Golovatenko Posted May 8, 2019 Share Posted May 8, 2019 Hello, could you advice the process of patching XenServer, please? I cannot find clear statement about it in documentation. Do you install only recommended software from portal https://support.citrix.com/search/#/All Products?ct=Security Bulletins,Software Updates&searchText=&sortBy=Created date&pageIndex=1 or do yum update as well? (By default repos are commented, so you should uncomment them to start using it) Could this way pass to losing support? Link to comment
Alan Lantz Posted May 8, 2019 Share Posted May 8, 2019 You don't yum update, you go by the recommended patch release. https://support.citrix.com/article/CTX225835 --Alan-- Link to comment
Sergii Golovatenko Posted May 8, 2019 Author Share Posted May 8, 2019 37 minutes ago, Alan Lantz said: You don't yum update, you go by the recommended patch release. https://support.citrix.com/article/CTX225835 --Alan-- Alan, it's called "Recommended Hotfixes for XenServer", so in my view it's recommendations from vendor that fixes something or brings new functuanality. What's about linux components that has vulnarebilities? For example cURL - I didn't find fix for it on provided link, but if we enable repos it shows that newer version is available. I assume a lot of other default linux applications have newer versions. Should we keep them not updated and make XenServer affected, update it or raise it with Citrix to publish updates? In my view Citrix publish updates for Xen components or components that somehow relate to Xen, not to everyrhing. If you can point me on article with recommendations/bestpractices from Citrix where they recommend install only their updates and don't enable repos or enable, but only for ... - will be grate. I hope I explained problem that stand on my way. Thank you in advance. Link to comment
Alan Lantz Posted May 8, 2019 Share Posted May 8, 2019 Citrix will address vulnerabilities with those recommended hotfixes, but for new versions of any of the components or the kernel itself, those are rolled out with the next version release. --Alan-- Link to comment
Tobias Kreidl Posted May 8, 2019 Share Posted May 8, 2019 Applying additional packages not issued explicitly by Citrix could void any warranty or support. Only hotfixes and updates from Citrix should be applied to XenServer hosts. -=Tobias Link to comment
Question
Sergii Golovatenko
Hello,
could you advice the process of patching XenServer, please? I cannot find clear statement about it in documentation.
Do you install only recommended software from portal https://support.citrix.com/search/#/All Products?ct=Security Bulletins,Software Updates&searchText=&sortBy=Created date&pageIndex=1 or do yum update as well? (By default repos are commented, so you should uncomment them to start using it)
Could this way pass to losing support?
Link to comment
4 answers to this question
Recommended Posts
Archived
This topic is now archived and is closed to further replies.