Dear Qubes Community,
The Xen Project has released one or more Xen Security Advisories (XSAs).
The security of Qubes OS *is not affected*.
Therefore, *no user action is required*.
XSAs that affect the security of Qubes OS (user action required)
----------------------------------------------------------------
The following XSAs *do affect* the security of Qubes OS:
- (None)
XSAs that do not affect the security of Qubes OS (no user action required)
--------------------------------------------------------------------------
The following XSAs *do not affect* the security of Qubes OS, and no user
action is necessary:
- XSA-386 (in practice affects only Xen 4.14.3+ due to another bug that
cancels out this security flaw; the other bug was fixed in 4.14.3, which
exposed this flaw)
Related links
-------------
- Xen XSA list: <
https://xenbits.xen.org/xsa/>
- Qubes XSA tracker: <
https://www.qubes-os.org/security/xsa/>
- Qubes security pack (qubes-secpack):
<
https://www.qubes-os.org/security/pack/>
- Qubes security bulletins (QSBs): <
https://www.qubes-os.org/security/qsb/>
This announcement is also available on the Qubes website:
https://www.qubes-os.org/news/2021/10/07/xsas-released-on-2021-10-05/
--
Andrew David Wong
Community Manager
The Qubes OS Project
https://www.qubes-os.org