Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
VMSA-2013-0009 VMware ESX and ESXi updates to third party libraries
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
VMware has updated several third party libraries in ESX and ESXi to address multiple security vulnerabilities.
Insight
Insight
a. ESX userworld update for OpenSSL library The userworld OpenSSL library is updated to version openssl-0.9.8y to resolve multiple security issues. b. Service Console (COS) update for OpenSSL library The Service Console updates for OpenSSL library is updated to version openssl-0.9.8e-26.el5_9.1 to resolve multiple security issues. c. ESX Userworld and Service Console (COS) update for libxml2 library The ESX Userworld and Service Console libxml2 library is updated to version libxml2-2.6.26-2.1.21.el5_9.1 and libxml2-python-2.6.26-2.1.21.el5_9.1. to resolve a security issue. d. Service Console (COS) update for GnuTLS library The ESX service console GnuTLS RPM is updated to version gnutls-1.4.1-10.el5_9.1 to resolve a security issue. e. ESX third party update for Service Console kernel The ESX Service Console Operating System (COS) kernel is updated to kernel-2.6.18-348.3.1.el5 which addresses several security issues in the COS kernel.
Affected Software
Affected Software
VMware ESXi 4.1 without patch ESXi410-201307001. VMware ESX 4.1 without patch ESX410-201307001 VMware ESXi 5.0 without Update 3 VMware ESXi 4.0 without patch ESXi400-201310001 VMware ESX 4.0 without patch ESX400-201310001
Detection Method
Detection Method
Check for missing patches.
Solution
Solution
Apply the missing patch(es).