<< Previous Next >>
Release notes
Solution
---------------------------------------------------------------
* Afaria 6.0 Service Pack 1 Hot Fix 28 (Administrator Only)
http://frontline.sybase.com/support/fileDownload.aspx?ID=2133
Release Notes
http://frontline.sybase.com/support/downloads/Afaria/6_0_SP1/
60Sp1AfariaFx28/60Sp1AfariaFx28.htm
* Afaria 6.5 (there are two parts to Afaria 6.5 Hot Fix 55)
Server
ESX any ESX not affected
4. Solution
Please review the patch/release notes for your product and version
and verify the checksum of your downloaded file.
VMware Workstation 7.1.5
------------------------
http://www.vmware.com/go/downloadworkstation
** The built-in update feature of Fusion can be used immediately to
upgrade to 4.1.2. The Web download of Fusion 4.1.2 will be
available on 2012-04-14.
4. Solution
Please review the patch/release notes for your product and
version and verify the checksum of your downloaded file.
Workstation 8.0.2
-----------------
http://www.vmware.com/go/downloadworkstation
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2011-1789 to this issue.
4. Solution
Please review the patch/release notes for your product and version
and verify the checksum of your downloaded file.
vCenter Server 4.1 Update 1
---------------------------
See VMSA-2011-0003 for details.
* hosted products are VMware Workstation, Player, ACE, Server, Fusion.
4. Solution
Please review the patch/release notes for your product and version
and verify the md5sum of your downloaded file.
VMware Workstation 5.5.9
------------------------
http://www.vmware.com/download/ws/ws5.html
* hosted products are VMware Workstation, Player, ACE,
Server, Fusion.
4. Solution
Please review the patch/release notes for your product and version
and verify the md5sum of your downloaded file.
VMware Workstation 5.5.9
------------------------
http://www.vmware.com/download/ws/ws5.html
CVE Identifier: CVE-2011-4143
This release addresses an environmental variable disclosure vulnerability. The vulnerability could allow an unauthenticated user to gain information about the web system setup.
Further information about this resolution and other fixes can be found in the Release Notes associated with RSA enVision 4.1 Patch 3 and enVision V4.0 Service Pack 4 Patch 5. The V4.0 SP4 P5 release notes have been updated; please download the updated version on SCOL.
Recommendation:
host. Update the Apache HTTP Server on the host system to version
2.0.63 in order to remediate the vulnerabilities listed above.
4. Solution
Please review the patch/release notes for your product and version
and verify the md5sum and/or the sha1sum of your downloaded file.
VMware Workstation 6.5.3
------------------------
http://www.vmware.com/download/ws/
ESX any ESX not affected
* Note CVE-2010-0425 is not applicable to AMS running on Linux
4. Solution
Please review the patch/release notes for your product and version
and verify the md5sum and/or the sha1sum of your downloaded file.
VMware Workstation 7.1.2
------------------------
http://www.vmware.com/download/ws/
The currently installed version of Tomcat depends on your patch
deployment history.
4. Solution
Please review the patch/release notes for your product and version
and verify the md5sum of your downloaded file.
VirtualCenter
-------------
VMware VirtualCenter 2.5 Update 4
-- Source Code: http://www.postgresql.org/ftp/source/
-- Binaries for some platforms: http://www.postgresql.org/ftp/binary/
If you need additional information on the included updates, it's
available in our Release Notes
(http://www.postgresql.org/docs/current/static/release.html). These
upgrades can be copied directly over existing PostgreSQL binaries and do
not require dump-and-reload for any system which has been updated in the
last six months (older versions may require some specific post-update
steps; see the release notes).
ESXi any ESXi not affected
ESX any ESX not affected
4. Solution
Please review the patch/release notes for your product and version
and verify the md5sum and/or the sha1sum of your downloaded file.
VMware Workstation Movie Decoder
--------------------------------
Workstation 7.1.2 Movie Decoder
Description
===========
Multiple vulnerabilities have been discovered in Chromium. Please
review the CVE identifiers and release notes referenced below for
details.
Impact
======
ESX any ESX not affected
4. Solution
Please review the patch/release notes for your product and version
and verify the md5sum and/or the sha1sum of your downloaded file.
VMware Workstation Movie Decoder stand alone
--------------------------------------------
http://www.vmware.com/download/ws/drivers_tools.html
View 4.6 Windows View 4.6.1
View 4.0 Windows affected, no patch planned
4. Solution
Please review the patch/release notes for your product and
version and verify the checksum of your downloaded file.
View 4.6.1
----------
http://downloads.vmware.com/d/info/desktop_downloads/vmware_view/4_6
|-----------+------------------+------------------------------------|
| 3.1.xS | Not Vulnerable | Not Vulnerable |
+-------------------------------------------------------------------+
For mapping of Cisco IOS XE to Cisco IOS releases, please refer to
the Cisco IOS XE 2 and Cisco IOS XE 3S Release Notes.
Cisco IOS XR System Software
+---------------------------
Cisco IOS XR Software is not affected by the vulnerabilities
|-----------+------------------+------------------------------------|
| 3.1.xS | Not Vulnerable | Not Vulnerable |
+-------------------------------------------------------------------+
For mapping of Cisco IOS XE Software to Cisco IOS Software releases,
please refer to the Cisco IOS XE 2 and Cisco IOS XE 3S Release Notes.
Cisco IOS XR System Software
+---------------------------
Cisco IOS XR Software is not affected by the vulnerabilities
Affected Products:
------------------
* Cisco Unified IP Phone 7960G and 7940G (SIP) with P0S3-08-9-00
firmware. Cisco released a patched firmware on October 21, 2008 which is
described in the bug identifier CSCsu22285 (Cisco Unified IP Phone 7960G
and 7940G (SIP) Release Notes for Firmware Release 8.10).
Credits:
--------
* This vulnerability was discovered by Gabriel Campana and Laurent Butti
from France Telecom / Orange
ESX 4.0 ESX ESX400-201205401-SG
ESX 3.5 ESX ESX350-201205401-SG
4. Solution
Please review the patch/release notes for your product and
version and verify the checksum of your downloaded file.
Workstation 8.0.3
-----------------
http://www.vmware.com/go/downloadworkstation
https://www.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001631-V51BB28-ES-20090803
MD5 results: 0e9c865cd7711186a632fc708f39f00f
SHA1 results: b964395cc1012a47b056aa3fa55a9602c3c16d3a
Note:
The patch kit installation instructions and the Patch Summary and Release Notes documents provide patch kit installation and removal instructions and a summary of each patch. Please read these documents prior to installing patches.
PRODUCT SPECIFIC INFORMATION
None
HISTORY
* In Search products, enter the server model number (for example, rx3600) and then click >> to begin the search.
* Select the model from the product search results.
* Select the product.
* Select the operating system.
* In the Firmware – System section, locate the latest firmware package and click Download >> .
* To see the release notes with installation instructions, click on the package Description and then the Release Notes tab.
* Click on save and select a directory to save the package.
* Follow the installation instructions to complete the firmware update.
PRODUCT SPECIFIC INFORMATION
None
Version
HP ProCurve Threat Management Services zl Module
ST.1.0.090603 or subsequent
Note: PR_41209, PR_39898, PR_39412, and PR_18770 are documented in the Release Notes for vST.1.0.090603.
PRODUCT SPECIFIC INFORMATION
None
has assigned the name CVE-2011-0355 to the issue.
The issue is addressed by Cisco in the following releases:
- Cisco Nexus 1000V Virtual Ethernet Module Release 4.2(4) SV1(4)
- Cisco Nexus 1000V Virtual Ethernet Module Release 4.0(4) SV1(3c)
For details refer to the release notes of these releases (see
section 4 for links).
VMware customers are only affected by this vulnerability if they
have chosen to deploy the Cisco Nexus 1000V virtual switch as a
replacement for the VMware vNetwork Standard Switch or the VMware
in the given train that is earlier than the "First Fixed Release" is
known to be vulnerable. Cisco recommends upgrading to a release equal
to or later than the release in the "First Fixed Release" column of
the table.
WARNING: Please read the release notes on Cisco Show and Share
version 5.2(3) regarding MCS Server Appliance support.
The following MCS Server Appliances are not supported in Cisco Show
and Share version 5.2(3), and administrators should use a recommended
release of 5.2(2.1) or later:
5. Directory traversal vulnerability (CVE-2012-0403)
CVSS Base Score: 6.3 (AV:N/AC:M/Au:S/C:C/I:N/A:N)
Further information about these resolutions and other fixes can be found in
the Release Notes associated with RSA enVision 4.1 Patch 4.
Recommendation:
RSA strongly recommends that all RSA enVision customers upgrade to RSA
enVision 4.1 Patch 4 that contains the resolutions for these issues.
Apache Jackrabbit version 1.5.2. The release is available for download
at:
http://jackrabbit.apache.org/downloads.html
See the full release notes below for details about this release.
Release Notes -- Apache Jackrabbit -- Version 1.5.2
Introduction
SHA1 results:
d676eecb6ef6e99e5f5b768cf7d51c92c8b3b6d4
Note:
The patch kit installation instructions and the Patch Summary and Release Notes documents provide patch kit installation and removal instructions and a summary of each patch. Please read these documents prior to installing patches.
PRODUCT SPECIFIC INFORMATION
None
HISTORY
Camino 1.5.2 Release Notes document is available at
http://caminobrowser.org/releases/1.5.2/
"Camino 1.5.2 contains the following improvements over version 1.5.1:
* Upgraded to version 1.8.1.8 of the Mozilla Gecko rendering engine, which includes several critical security and stability fixes."
Affected products:
Camino versions 0.x and 1.x
Solution:
http://www13.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001786-V51BB28-ES-20100816
MD5 results: b34d028797577408d565da27d93c30a9
SHA1 results: b34d028797577408d565da27d93c30a9
Note:
The patch kit installation instructions and the Patch Summary and Release Notes documents provide patch kit installation and removal instructions and a summary of each patch. Please read these documents prior to installing patches.
PRODUCT SPECIFIC INFORMATION
None
HISTORY
5. Click Patch
6. In the Description column of the table, click the title of the patch:
a. To download the file, click Download
b. To read the release notes, click the Release Notes tab
To see which platforms support SAN/iQ 9.0 and 9.5, please see the compatibility matrix: http://www.hp.com/go/p4000compatibility
HISTORY
Version:1 (rev.1) 10 November 2011 Initial release
<<Previous Next>>
|
