Search the VMware Knowledge Base (KB)
View by Article ID

VMware ESXi 5.1, Patch ESXi510-201412101-SG: Updates ESXi 5.1 esx-base vib (2086288)

  • 0 Ratings

Details

Release date: December 04, 2014

Bulletin ID ESXi510-201412101-SG
Patch Category Security
Patch Severity Important
Build For build information, see KB 2086278.
Host Reboot Required Yes
Virtual Machine Migration or Shutdown Required Yes
Affected Hardware N/A
Affected Software N/A
VIBs Included VMware:esx-base:5.1.0-2.47.2323231
PRs Fixed 1123475, 1250330, 1257897, 1268686, 1272042, 1276542, 1292478, 1313551
Related CVE numbers CVE-2013-0242, CVE-2013-1914, CVE-2013-4332, CVE-2013-2877, CVE-2014-0191, CVE-2014-0015, CVE-2014-0138, CVE-2012-1150, CVE-2012-0876, CVE-2012-0845, CVE-2011-3389, CVE-2013-1752, CVE-2013-4238


For more information on patch and update classification, see KB 2014447.


Solution

Summaries and Symptoms

This patch updates the esx-base VIB to resolve the following issues:

  • PR 1123475: The ESXi glibc-2.5 package is updated to resolve multiple security issues.
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2013-0242, CVE-2013-1914, and CVE-2013-4332 to these issues.

  • PR 1250330: On an ESXi 5.1 host, if you invoke the PowerStateChangeRequest CIM method without passing values to any parameters, the ESXi host might not respond to this change request and might not restart.

  • PR 1257897: The ESXi userworld libxml2 library is updated to resolve multiple security issues.
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2013-2877 and CVE-2014-0191 to these issues.

  • PR 1268686: The ESXi userworld libcurl library has been updated to resolve multiple security issues.
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2014-0015 and CVE-2014-0138.

  • PR 1272042: The Python third-party library is updated to version 2.6.9 on ESXi to resolve multiple security issues.
    The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2012-1150, CVE-2012-0876, CVE-2012-0845, CVE-2011-3389, CVE-2013-1752, and CVE-2013-4238 to these issues.

  • PR 1276542: The vmx.log.rotateSize parameter was disabled in the previous ESXi releases. This parameter is enabled by VMX in ESXi 5.1 and ESXi 5.5. The vmx.log.rotateSize parameter is used to control the vmware.log file size.

  • PR 1292478: In ESXi 5.1 Update 3, the pshare salting for the Transparent Page Sharing (TPS) management capabilities that was introduced in the previous patch release is enabled by default. This means that TPS only applies to individual VM’s and that inter-VM TPS is disabled unless an administrator chooses to re-enable it.
    For more information, see KB 2097593.

  • PR 1313551: The Likewise 5.3 stack which has Kerberos v5-1.6.3 version has been updated.

Deployment Considerations

None beyond the required patch bundles and reboot information listed in the table above.

Patch Download and Installation

The typical way to apply patch bulletin to ESXi hosts is through the VMware Update Manager. For details, see the Installing and Administering VMware vSphere Update Manager.

ESXi hosts can be updated by manually downloading the patch ZIP file from the VMware download page and installing the VIB by using the esxcli software vib command. Additionally, the system can be updated using the image profile and the esxcli software profile command. For details, see the vSphere Command-Line Interface Concepts and Examples and the vSphere Upgrade Guide.

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

  • 0 Ratings

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.

What can we do to improve this information? (4000 or fewer characters)




Please enter the Captcha code before clicking Submit.
  • 0 Ratings
Actions
KB: