01 Apr 2017 - Xen 4.4 has reached EOL

As per the Xen Feature Matrix, Xen 4.4 has reached the end of security support

All users are advised to update to a supported release as soon as possible


Version Support Timeline
Version End of Support End of Security Fixes
4.4 EOL Sept 2015 March 2017
4.5 July 2016 Jan 2018
4.6 April 2017 Oct 2018
4.7 Dec 2017 Jun 2019
4.9 Jan 2019 July 2020


Stable Repositories

kernel-xen-4: Sun Oct 22 2017 Steven Haigh <netwiz@crc.id.au> - 4.9.58-1 (Full Changelog) - Update to 4.9.58

xen45-4.5: Thu Oct 12 2017 Steven Haigh <netwiz@crc.id.au - 4.5.5-20 (Full Changelog) - XSA237 (CVE-2017-15590) multiple MSI mapping issues on x86 - XSA238 (CVE-2017-XXXXX) DMOP map/unmap missing argument checks - XSA239 (CVE-2017-15589) hypervisor stack leak in x86 I/O intercept code - XSA240 (CVE-2017-15595) Unlimited recursion in linear pagetable de-typing - XSA241 (CVE-2017-15588) Stale TLB entry due to page type release race - XSA242 (CVE-2017-15593) page type reference leak on x86 - XSA243 (CVE-2017-15592) x86: Incorrect handling of self-linear shadow mappings with translated guests - XSA244 (CVE-2017-15594) x86: Incorrect handling of IST settings during CPU hotplug

xen46-4.6: Thu Oct 12 2017 Steven Haigh <netwiz@crc.id.au - 4.6.6-8 (Full Changelog) - XSA237 (CVE-2017-15590) multiple MSI mapping issues on x86 - XSA238 (CVE-2017-XXXXX) DMOP map/unmap missing argument checks - XSA239 (CVE-2017-15589) hypervisor stack leak in x86 I/O intercept code - XSA240 (CVE-2017-15595) Unlimited recursion in linear pagetable de-typing - XSA241 (CVE-2017-15588) Stale TLB entry due to page type release race - XSA242 (CVE-2017-15593) page type reference leak on x86 - XSA243 (CVE-2017-15592) x86: Incorrect handling of self-linear shadow mappings with translated guests - XSA244 (CVE-2017-15594) x86: Incorrect handling of IST settings during CPU hotplug

xen47-4.7: Thu Oct 12 2017 Steven Haigh <netwiz@crc.id.au - 4.7.3-8 (Full Changelog) - XSA237 (CVE-2017-15590) multiple MSI mapping issues on x86 - XSA238 (CVE-2017-XXXXX) DMOP map/unmap missing argument checks - XSA239 (CVE-2017-15589) hypervisor stack leak in x86 I/O intercept code - XSA240 (CVE-2017-15595) Unlimited recursion in linear pagetable de-typing - XSA241 (CVE-2017-15588) Stale TLB entry due to page type release race - XSA242 (CVE-2017-15593) page type reference leak on x86 - XSA243 (CVE-2017-15592) x86: Incorrect handling of self-linear shadow mappings with translated guests - XSA244 (CVE-2017-15594) x86: Incorrect handling of IST settings during CPU hotplug

xen49-4.9: Thu Oct 12 2017 Steven Haigh <netwiz@crc.id.au - 4.9.0-8 (Full Changelog) - XSA237 (CVE-2017-15590) multiple MSI mapping issues on x86 - XSA238 (CVE-2017-XXXXX) DMOP map/unmap missing argument checks - XSA239 (CVE-2017-15589) hypervisor stack leak in x86 I/O intercept code - XSA240 (CVE-2017-15595) Unlimited recursion in linear pagetable de-typing - XSA241 (CVE-2017-15588) Stale TLB entry due to page type release race - XSA242 (CVE-2017-15593) page type reference leak on x86 - XSA243 (CVE-2017-15592) x86: Incorrect handling of self-linear shadow mappings with translated guests - XSA244 (CVE-2017-15594) x86: Incorrect handling of IST settings during CPU hotplug

Testing Repositories