CVE-2019-19781, what you should know and how to fix your Citrix ADC, Access Gateway and SD-WAN WANOP

Disclamer: This blogpost is made to help you understanding CVE-2019-19781 and how you can check if you are vulnerable and community guidelines how to fix your environment. This blogpost is not covering the details of the exploits out here as I have no interest in sharing what the red team is doing. All responsibility is your own. I highly recommend you read the blogpost and take action immediately, don’t hesitate.

Timeline for CVE-2019-19781

Continue reading

NVIDIA vGPU Software v 10.0

Hi All

Its time to plan updating your NVIDIA TESLA M6, M10, M60, P4, P6, P40, P100, V100, T4, RTX6000, RTX8000 with NVIDIA vGPU software 10.0. NVIDIA have released new drivers for vGPU 10.0.

I have in this article also included which Public Cloud instance is available with NVIDIA GPUs and which license is BYO or provided by the public cloud provider such as Alibaba, Azure, AWS, GCP, Alibaba.

For a list of validated server platforms, refer to NVIDIA vGPU Certified Servers.

Important:

  • Citrix XenServer 7.0, 7.1 is not supported with NVIDIA Tesla T4
  • NVIDIA vGPU 10.0 is supported with VMware Horizon 7.11, 7.10, 7.9, 7.8, 7.7, 7.6, 7.5, 7.4, 7.3, 7.2, 7.1, 7.0, 6.2
  • NVIDIA vGPU 10.0 is only supported with Citrix Virtual Apps & Desktops 7.15, 7 1808, 7 1903, 7 1906, 7 1909, 7 1912 in HDX 3D Pro mode
  • If you are a customer using XenServer 7.2, 7.3, 7.4, 7.5 its no longer supported with NVIDIA vGPU 10.0 and should plan upgrading to Citrix Hypervisor 8.1

This release includes the following software:

  • NVIDIA vGPU Manager version 440.43 for the Citrix Hypervisor, VMware vSphere, RHEL KVM, Nutanix AHV
  • NVIDIA Windows driver version 441.66
  • NVIDIA Linux driver version 440.43

New Features in Release 10.0

  • Support for NVIDIA® GRID™ Virtual PC and GRID Virtual Applications on Quadro RTX 6000 and Quadro RTX 8000 GPUs
  • Increase in the maximum number of virtual display heads supported by -1Q, -2B, and -1B4 vGPUs:
    • All -1Q vGPUs now support 4 heads instead of 2 heads.
    • All -2B vGPUs now support 4 heads instead of 2 heads.
    • All -1B4 vGPUs now support 4 heads instead of 1 head.
  • Flexible virtual display resolutions

    Instead of a fixed maximum resolution per head, vGPUs now support a maximum combined resolution based on their frame buffer size. This behavior allows the same number of lower resolution displays to be used as before, but alternatively allows a smaller number of higher resolution displays to be used.

  • Virtual display resolutions greater than 4096×2160
  • 10-bit color
  • Changes to allow cross-branch driver support in future main release branches
    Note: This feature cannot be used until the next NVIDIA vGPU software main release branch is available.

    The purpose of this change is to allow a release of the Virtual GPU Manager from a later main release branch to be used with the NVIDIA vGPU software graphics drivers for the guest VMs from the previous branch.

  • Miscellaneous bug fixes

Hardware and Software Support Introduced in Release 10.0

  • Support for passively cooled Quadro RTX 6000 and Quadro RTX 8000 GPUs
  • Support for Tesla V100S PCIe 32GB GPUs
  • Support for Red Hat Enterprise Linux 8.1 as a guest OS
  • Support for Red Hat Enterprise Linux 8.0 and CentOS 8.0 as a guest OS
  • Support for Windows 10 November 2019 Update (1909) as a guest OS
  • Support for Citrix Virtual Apps and Desktops version 7 1912
  • Support for Citrix Hypervisor 8.1
  • Support for VMware Horizon 7.11

Features Deprecated in Release 10.0

The following table lists features that are deprecated in this release of NVIDIA vGPU software. Although the features remain available in this release, they might be withdrawn in a future release. In preparation for the possible removal of these features, use the preferred alternative listed in the table.

Deprecated Feature Preferred Alternative
-1B4 vGPU types -1B vGPU types
-2B4 vGPU types -2B vGPU types

Continue reading

Citrix Virtual Apps & Desktop 7 1912

Citrix have released a new version of Citrix Virtual Apps and Desktop 7 1912.

Release is now available for download, December, 2019.

Citrix Virtual Apps & Desktop 7 1912 is a LTSR release.
Read more about LTSR here

Citrix Virtual Apps (former name: XenApp) Citrix Virtual Desktop (former name: XenDesktop)

Citrix raises the bar of for user experience and new product release of following technologies:

  • Director 1912
  • Virtual Delivery Agents 1912 for ServerOS and ClientOS
  • Virtual Delivery Agent 1912 for Linux
  • Citrix Licensing 11.16.3
  • Citrix Federated Authentication Service 1912
  • Storefront 1912
  • Provisioning 1912
  • Profile Management 1912
  • Workspace Environment Management 1912
  • Session Recording 1912
  • Workspace App 1912 Techpreview for Windows
  • Workspace App 1912 for Linux
  • Workspace App 1912 for Chrome
  • Workspace App 1912 for Android
  • Workspace App 1912 for HTML5
  • Workspace App 1912 for ChromeOS

Continue reading

Citrix Hypervisor 8.1

Citrix have released a new version of Citrix Hypervisor 8.1 (aka XenServer)

I am very excited about this release because now Citrix is supporting the new AMD latest Rome CPU and support multiple NVIDIA vGPU and guest UEFI secure boot. The Citrix Hypervisor platform has been updated to use Xen hypervisor version 4.13. Lots of new features 🙂

What is new in Citrix Hypervisor 8.1

Citrix Hypervisor 8.1 provides the following new features and enhancements

  • Guest UEFI boot and Secure Boot
  • Multiple vGPU
  • Citrix Hypervisor – Performance improvements
  • Changes to guest operating system support
  • Changes to processor support
  • Citrix Hypervisor Conversion Manager console capabilities are now included in XenCenter
  • Update to Xen hypervisor
  • PVS accelerator optimised for Citrix Hypervisor 8.1

Citrix Hypervisor 8.1 is a Current Release (CR). The Current Release model allows customers to consume new features at the earliest possible juncture. A Current Release contrasts with the Long Term Service Release (XenServer 7.1 LTSR), which guarantees stability in terms of the feature set.

Citrix Hypervisor 8.1 is available in the following editions:

  • Premium Edition (previously Enterprise Edition)
  • Standard Edition
  • Express Edition (previously Free Edition)

Continue reading

VMware Horizon 7.11

VMware have released a new version of VMware Horizon 7.11, and this release is for now general available from 13th December 2019. This is a major release, so I hope you like this article I put together. VMware have made some huge improvements in this release, which customers/partners are going to benefit from.

HINT – If you are using Nvidia vGPU (on-prem) I highly recommend you upgrade to NVIDIA vGPU 10, when this is released it will be supporting VMware Horizon 7.11. I have in this article also included the new features of Horizon Cloud service for IBM Cloud, AWS, Azure.

One of the great things I saw in this release is that VMware Horizon the new HW encoder supports five or more monitors. Lets dig into what is new.

What is new in VMware Horizon 7.11

VMware Horizon 7.11 provides the following new features and enhancements

  • VMware Horizon Connection Server On-Premises
  • VMware Horizon Agent for Linux
  • VMware Horizon Agent for Windows
  • VMware Dynamic Environment Manager 9.10 (former VUEM)
  • VMware Unified Access Gateway 3.8
  • VMware Horizon Clients 5.3 for Android, Chrome, Linux, iOS, Mac, Windows, UWP, HTML Access

VMware Horizon Cloud services:

  • VMware Horizon Cloud Service 2.2 (Azure, AWS, On-prem)
  • VMware Horizon Cloud Service on IBM Cloud 19.3

Continue reading