Thursday, November 15, 2018

VMSA-2018-0027

VMware announced  a security breach VMSA-2018-0027 and released related patch files. It's about a security issue on these VMware products: ESXi, Workstation and Fusion that contain uninitialized stack memory usage in the virtual machine network adapter type: VMXNET3 and on some situation allow a guest OS to execute code on the ESXi host. Remember other types of Adapter (VMXNET2, E1000, E1000E) are not affected.

It's severity is critical for all of the products and below i mentioned related patch for ESXi versions:
ESXi600-201811401-BG

ESXi650-201811301-BG
ESXi670-201811401-BG

For installation of patch files, one the best ways is using VMware Update Manager (VUM) or if there is not, run ESXCLI:

esxcli software vib update -d {path of imported file on ESXi folders}/{PatchFileName.zip

 

No comments:

Post a Comment

I will start a new journey soon ...