VMware ESX 4.0, Patch ESX400-201009402-SG: Updates GNU cpio package (1023760)
Release date: September 30, 2010
|Build||See KB 1025321.|
|Host Reboot Required||No|
|Virtual Machine Migration or Shutdown Required||No|
|Related CVE numbers||CVE-2007-4476, CVE-2010-0624|
Summaries and Symptoms
This patch updates the GNU cpio package for ESX service console to cpio-2.6-23.el5_4.1, which fixes two security issues. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2007-4476 and CVE-2010-0624 to these issues.
None beyond the required patch bundles and reboot information listed in the table above.
Patch Download and Installation
See the VMware vCenter Update Manager Administration Guide for instructions on using Update Manager to download and install patches to automatically update ESX 4.0 hosts.
To update ESX 4.0 hosts when not using Update Manager, download the patch ZIP file from http://support.vmware.com/selfsupport/download/ and install the bulletin using esxupdate from the command line of the host. For more information, see the ESX 4 Patch Management Guide.