IGEL OS 11 and IGEL OS 12 do not contain an xz package version that is vulnerable to the xz backdoor (CVE-2024-3094).

IGEL OS customers do not need to take any measures.

Customers running IGEL Universal Management Suite (UMS) on Linux or running IGEL Cloud Gateway (ICG) should check with their host OS vendor whether their OS version is vulnerable.

References

CVE-2024-3094: https://nvd.nist.gov/vuln/detail/CVE-2024-3094