Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
 
Search the VMware Knowledge Base (KB)   View by Article ID
 

VMware ESX 4.0, Patch ESX400-201302401-SG: Updates VMkernel, Tools, VMX, hostd (2041345)

Details

Release date: February 07, 2013

Patch Classification Security
See KB 2014447 if using Update Manager 5.0
Build For build information, see KB 2041343.
Host Reboot Required Yes
Virtual Machine Migration or Shutdown Required Yes
PRs Fixed 915379, 961934, 975539
Affected Hardware N/A
Affected Software N/A
VIBs Included
  • vmware-esx-apps
  • vmware-hostd-esx
  • vmware-esx-vmx
  • vmware-esx-vmnixmod
  • vmware-esx-vmkernel64
  • vmware-esx-vmkctl
  • vmware-esx-tools
  • vmware-esx-srvrmgmt
  • vmware-esx-scripts
  • vmware-esx-perftools
  • vmware-esx-microcode
  • vmware-esx-iscsi
  • vmware-esx-drivers-vmklinux-vmklinux
    • Related CVE numbers CVE-2013-1405, CVE-2013-1406


    Solution

    Summaries and Symptoms

    This patch resolves the following security issues:

    • Due to defective handling of some IO control codes, the vmci.sys driver might allow privilege escalation on Windows guest operating systems. A malicious user can exploit this vulnerability to manipulate the memory allocation through the Virtual Machine Communication Interface (VMCI) code.

      The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2013-1406 to this issue.

    • The ESX host contains a vulnerability in handling of the management authentication protocol. To exploit this vulnerability, an attacker must convince ESX to interact with a malicious server as a client. Exploitation of this issue might lead to code execution on the client system.
      To reduce the possibility of exploitation, deploy ESX in an isolated management network.

      The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2013-1405 to this issue.

    • The vSphere Client contains a vulnerability in its handling of the management authentication protocol. To exploit this vulnerability, an attacker must convince the vSphere Client to interact with a malicious server. Exploitation of this issue might lead to code execution on the system where the vSphere Client is installed.
      To reduce the possibility of exploitation, deploy the vSphere Client in an isolated management network.

      The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2013-1405 to this issue.

    Deployment Considerations

    None beyond the required patch bundles and reboot information listed in the table above.

    Patch Download and Installation

    See the VMware vCenter Update Manager Administration Guide for instructions on using Update Manager to download and install patches to automatically update ESX 4.0 hosts.

    To update ESX 4.0 hosts when not using Update Manager, download the patch ZIP file from http://support.vmware.com/selfsupport/download/ and install the bulletin using esxupdate from the command line of the host. For more information, see the ESX 4.0 Patch Management Guide.

    Request a Product Feature

    To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

    Feedback

    • 0 Ratings

    Did this article help you?
    This article resolved my issue.
    This article did not resolve my issue.
    This article helped but additional information was required to resolve my issue.
    What can we do to improve this information? (4000 or fewer characters)
    • 0 Ratings
    Actions
    KB: