---

Xen Patches Hypervisor Breakout Risk Without Breaking the Cloud

The open-source Xen hypervisor is widely used to help enable public cloud operations. Back in October 2014, a vulnerability in Xen led to a reboot of public cloud services at Amazon, Rackspace and IBM SoftLayer. This week a new vulnerability was disclosed in Xen, with the potential to enable a guest virtual machine to break out of the hypervisor isolation. But in contrast to the issue in 2014, the new XSA-212 vulnerability did not require a reboot of the public cloud.