This update for xen fixes the following issues: Security issues fixed: - CVE-2021-28693: xen/arm: Boot modules are not scrubbed - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling - CVE-2021-0089: xen: Speculative Code Store Bypass - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 - CVE-2021-20255: Fixed stack overflow via infinite recursion in eepro100 - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 . - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation . - CVE-2021-28698: long running loops in grant table handling . - CVE-2021-28699: inadequate grant-v2 status frames array bounds check . - CVE-2021-28700: No memory limit for dom0less domUs . - CVE-2021-3592: slirp: invalid pointer initialization may lead to information disclosure . - CVE-2021-3594: slirp: invalid pointer initialization may lead to information disclosure . - CVE-2021-3595: slirp: invalid pointer initialization may lead to information disclosure . Other issues fixed: - Fixed Panic on CPU 0: IO-APIC + timer doesn"t work! - Fixed an issue with xencommons, where file format expecations by fillup did not allign - Upstream bug fixes - Dom0 hangs when pinning CPUs for dom0 with HVM guest . - Fixed Xen SLES11SP4 guest hangs on cluster . - Fixed PVHVM SLES12 SP5 - NMI Watchdog CPU Stuck . - Core cannot be opened when using xl dump-core of VM with PTF - Prevent superpage allocation in the LAPIC and ACPI_INFO range .