kjaerulv
This is bad.. #citrix https://shittrix.moksha.dk/
89 vulnerabilities in XAPI / Citrix XenServer

Day-0 public disclosure of 89 independently exploitable vulnerabilities in Citrix's hypervisor management platform. 5 Critical, 28 High across 8 XAPI object types. Independent security research by Jakob Wolffhechel.

Apr 24 at 12:25pmMastodon for Android
Show threadalf149 (Rolf Amfelt)Apr 24
@Kjaerulv
@kramse does this affect qubes?
Show threadreynirApr 24
@alf149 @Kjaerulv @kramse jeg tror ikke Qubes bruger XAPI
Show threadHenrik Kramselund - kramse 🍉Apr 26

@reynir @alf149 @Kjaerulv

Enig, Den i Qubes bruger kun et relativt lille subset

Kan ikke lige huske hvad siden hedder hos dem,
Den indeholder Security critical code trusted code:
https://doc.qubes-os.org/en/latest/developer/system/security-critical-code.html
(opdateret med rigtigt link)

Men man skal generelt holde øje med deres QSB https://www.qubes-os.org/security/qsb/

Security-critical code

Below is a list of security-critical (i.e., trusted) code components in Qubes OS. A successful attack against any of these components could compromise the system’s security. This code can be though...

Qubes OS