In case there are any Qubes OS users here: we just released Qubes Security Bulletin #29 for a critical Xen bug in PV memory virtualization allowing VM escape (XSA-212):

https://github.com/QubesOS/qubes-secpack/blob/master/QSBs/qsb-029-2017.txt