Citrix Releases Security Updates for Hypervisor, XenServer, and Virtual Apps and Desktops

Scheduled updates for Citrix products

Threat ID:: CC-4057
Threat Severity:: Information only
Published:: 16 March 2022 1:23 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Scheduled updates for Citrix products

Affected platforms

The following platforms are known to be affected:

Citrix Hypervisor

Citrix XenServer

Citrix Virtual Apps and Desktops

Threat details

Introduction

Citrix has released security updates to address vulnerabilities in Hypervisor. An attacker could exploit these vulnerabilities to take control of an affected system.

Remediation advice

Affected organisations are encouraged to review the following security advisories and apply the relevant hotfixes or workarounds.

Remediation steps

Type	Step
Patch	Citrix Hypervisor Security Update affecting Hypervisor and XenServer - CTX341586 https://support.citrix.com/article/CTX341586
Patch	Citrix Federated Authentication Service (FAS) Security Update affecting Citrix Virtual Apps and Desktops - CTX341587 https://support.citrix.com/article/CTX341587

Definitive source of threat updates

CVE Vulnerabilities

Status Published

CVE-2021-26401

LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.

Status Published

CVE-2022-26355

Citrix Federated Authentication Service (FAS) 7.17 - 10.6 causes deployments that have been configured to store a registration authority certificate's private key in a Trusted Platform Module (TPM) to incorrectly store that key in the Microsoft Software Key Storage Provider (MSKSP). This issue only occurs if PowerShell was used when configuring FAS to store the registration authority certificate’s private key in the TPM. It does not occur if the TPM was not selected for use or if the FAS administration console was used for configuration.

Last edited: 16 March 2022 1:24 pm