vRealize Log Insight 8.3 Security Patch for VMSA-2021-0019
Article ID: 337479
Updated On:
Products
VMware Aria Suite
Issue/Introduction
The vRealize Log Insight 8.3 Security Patch is a public Security Patch that addresses the vulnerabilities described in CVE-2021-22021.
Refer to VMSA-2021-0019 for information about the security issues addressed in this update.
Refer to VMSA-2021-0019 for information about the security issues addressed in this update.
Environment
VMware vRealize Log Insight 8.3.x
Resolution
Download and install the correct Security Patch version that matches your version of vRealize Log Insight.
It is recommended to take snapshots before applying the Security Patch.
See How to take a Snapshot of vRealize Operations for more information.
It is recommended to take snapshots before applying the Security Patch.
See How to take a Snapshot of vRealize Operations for more information.
- Download the vRealize Log Insight 8.3 Security Patch PAK file from the VMware Patch Portal.
Note: Select vRealize Log Insight as the Product and select 8.3.0 as the version and click Search.
Select the option below.
Select the option below.
| Release Name | Release Date | Build Number | File Name |
|---|---|---|---|
| vRLI83HF1 | 8/24/2021 | 18430451 | VMware-vRealize-Log-Insight-8.3.0-18430451.pak |
Prerequisites
- Create a snapshot or backup copy of the vRealize Log Insight virtual appliance.
- Obtain a copy of the vRealize Log Insight upgrade bundle .pak file for the release you are upgrading to.
- Verify that you are logged in to the vRealize Log Insight web user interface as a user with the Edit Admin permission. The URL format is https://log-insight-host, where log-insight-host is the IP address or host name of the vRealize Log Insight virtual appliance.
- Make a note of any nodes you are upgrading that are in maintenance mode. When the upgrade is finished, you must move them from the state Connected to Maintenance mode.
Procedure
- Click the configuration drop-down menu icon and select Administration.
- Under Management, click Cluster.
- Click Upgrade from PAK to upload the .pak file.
- Accept the new EULA to complete the upgrade procedure.
What to do next
- After the master node upgrade process is complete, you can view the remaining upgrade process, which is automatic.
- Check for the email sent to the Admin to confirm the upgrade completed successfully.
- After upgrade, all nodes are brought online even if they were in maintenance mode before the upgrade. Move these nodes back to maintenance mode as needed.
Additional Information
To get this security patch for other versions of vRealize Log Insight, see the articles below:
vRealize Log Insight 8.1.1 Security Patch for VMSA-2021-0019 (85405)
vRealize Log Insight 8.2 Security Patch for VMSA-2021-0019 (85412)
Note: This Security Patch is only available for vRealize Log Insight 8.1.1, 8.3, and 8.3. Customers on older versions of vRealize Log Insight must upgrade to version 8.1.1 or later to consume this patch.
Impact/Risks:
vRealize Suite Lifecycle Manager 8.x can be impacted. If vRealize Log Insight is used within the vRealize Suite Lifecycle Manager environment, follow this knowledge base article and apply the patch directly to the vRealize Log Insight appliance(s).
vRealize Log Insight 8.1.1 Security Patch for VMSA-2021-0019 (85405)
vRealize Log Insight 8.2 Security Patch for VMSA-2021-0019 (85412)
Note: This Security Patch is only available for vRealize Log Insight 8.1.1, 8.3, and 8.3. Customers on older versions of vRealize Log Insight must upgrade to version 8.1.1 or later to consume this patch.
Impact/Risks:
vRealize Suite Lifecycle Manager 8.x can be impacted. If vRealize Log Insight is used within the vRealize Suite Lifecycle Manager environment, follow this knowledge base article and apply the patch directly to the vRealize Log Insight appliance(s).
Feedback
Yes
No
Powered by
