| New User, Welcome! Login |
Next Page >>
VMware ESX Server
- - -------------------------------------------------------------------
VMware Security Advisory
Advisory ID: VMSA-2007-0006
Synopsis: Critical security updates for all supported
versions of VMware ESX Server, VMware Server,
VMware Workstation, VMware ACE, and
VMware Player
Issue date: 2007-09-18
Updated on: 2007-09-18
The VIX API (also known as "Vix") is an API that lets users write scripts
and programs to manipulate virtual machines.
Multiple buffer overflow vulnerabilities are present in the VIX API.
Exploitation of these vulnerabilities might result in code execution on
the host system or on the service console in ESX Server from the guest
operating system.
The VIX API can be enabled and disabled using the "vix.inGuest.enable"
setting in the VMware configuration file. This default value for this
setting is "disabled". This configuration setting is present in the
Updated service console patches
2. Relevant releases:
ESX Server 3.5 without patches ESX350-200712402-SG, ESX350-200712403-SG,
ESX350-200712404-SG
ESX Server 3.0.2 without patches ESX-1002969, ESX-1002970, ESX-1002971,
ESX-1002975, ESX-1002976
Updated service console patches
2. Relevant releases:
ESX Server 3.0.2 without patches ESX-1002969, ESX-1002970, ESX-1002971,
ESX-1002975, ESX-1002976
ESX Server 3.0.1 without patches ESX-1002962, ESX-1002963, ESX-1002964,
ESX-1002968, ESX-1002972, ESX-1003176
3. Problem description:
~ Security updates to aacraid driver, samba and python
2. Relevant releases:
ESX Server 3.0.2 without patches ESX-1003362, ESX-1003359, ESX-1003360
ESX Server 3.0.1 without patches ESX-1003350, ESX-1003347, ESX-1003348
ESX Server 2.5.5 Upgrade Patch 4
ESX Server 2.5.4 Upgrade Patch 15
NOTE: ESX 2.5.4 is in Extended Support and its end of support (Security
the VI Client "C" are contained in a single offline "O"
download file.
ESX
---
ESX Server 3.5 update 3 CD image Refresh
md5sum: e9bdaad2d37872820a4cad8e8dbde536
http://www.vmware.com/download/download.do?downloadGroup=ESX350U3
ESX Server 3.5 upgrade package from ESX Server 2.x to ESX Server 3.5
Update 3 Refresh
bind-lib to version 9.2.4-22.el3.
Version 9.2.4.-22.el3 addresses the recently discovered
vulnerability in the BIND software used for Domain Name
resolution (DNS). VMware doesn't install all the BIND packages
on ESX Server and is not vulnerable by default to the reported
vulnerability. Of the BIND packages, VMware only ships bind-util
and bind-lib in the service console and these components by
themselves cannot be used to setup a DNS server. Bind-lib and
bind-util are used in client DNS applications like nsupdate,
nslookup, etc.
- -------------------------------------------------------------------
VMware Security Advisory
Advisory ID: VMSA-2008-0002
Synopsis: Low severity security update for VirtualCenter
and ESX Server 3.0.2, and ESX 3.0.1
Issue date: 2008-01-07
Updated on: 2008-01-07
CVE numbers: CVE-2005-2090 CVE-2006-7195
CVE-2007-0450 CVE-2007-3004
- -------------------------------------------------------------------
Updated service console package e2fsprogs.
2. Relevant releases:
ESX Server 2.5.5 Upgrade Patch 5
ESX Server 2.5.4 Upgrade Patch 16
NOTE: ESX 2.5.4 is in Extended Support and its end of support (Security
~ and Bug fixes) is 10/08/2008. Users should plan to upgrade to at
~ least 2.5.5 and preferably the newest release available before
and verify the md5sum of your downloaded file.
ESX
---
ESX 3.0.3 build 104629
ESX Server 3.0.3 CD image
md5sum: c2cda9242c6981c7eba1004e8fc5626d
Upgrade package from ESX Server 2.x to ESX Server 3.0.3
md5sum: 0ad8fa4707915139d8b2343afebeb92b
Upgrade package from earlier releases of ESX Server 3 to ESX Server
3.0.3
VMware Server 2.0.2 and earlier,
VMware Fusion 3.0,
VMware Fusion 2.0.6 and earlier,
VMware VIX API for Windows 1.6.x,
VMware ESXi 4.0 before patch ESXi400-201002402-BG
VMware ESXi 3.5 before patch ESXe350-200912401-T-BG
VMware ESX 4.0 without patches ESX400-201002401-BG,
ESX400-200911223-UG
VMware ACE 2.5.1 and earlier,
VMware Server 2.0,
VMware Server 1.0.8 and earlier,
VMware Fusion 2.0.1 and earlier.
VMware ESXi 3.5 without patch ESXe350-200904402-T-BG
VMware ESX 3.5 without patch ESX350-200904401-BG
VMware ESX 3.0.3 without patch ESX303-200905401-SG
VMware ACE 2.5.2 and earlier,
VMware Server 2.0.1 and earlier,
VMware Server 1.0.9 and earlier,
VMware Fusion 2.0.5 and earlier,
VMware ESXi 4.0 without patch ESXi400-200909401-BG,
VMware ESXi 3.5 without patches ESXe350-200910401-I-SG,
ESXe350-200901401-I-SG,
VMware ESX 4.0 without patch ESX400-200909401-BG,
VMware Server 2.0.2 and earlier,
VMware Fusion 3.0,
VMware Fusion 2.0.6 and earlier,
VMware VIX API for Windows 1.6.x,
VMware ESXi 4.0 before patch ESXi400-201002402-BG
VMware ESXi 3.5 before patch ESXe350-200912401-T-BG
VMware ESX 4.0 without patches ESX400-201002401-BG,
ESX400-200911223-UG
VMware ACE 2.5.1 and earlier,
VMware Server 2.0,
VMware Server 1.0.8 and earlier,
VMware Fusion 2.0.3 and earlier,
VMware ESXi 3.5 without patch ESXe350-200904201-O-SG,
VMware ESX 3.5 without patch ESX350-200904201-SG,
VMware ESX 3.0.3 without patch ESX303-200904403-SG,
VMware Player 2.5.1 and earlier,
VMware ACE 2.5.1 and earlier,
VMware Server 2.0,
VMware Server 1.0.8 and earlier,
VMware ESXi 3.5 without patches ESXe350-200811401-O-SG,
ESXe350-200903201-O-UG
VMware ESX 3.5 without patches ESX350-200811401-SG,
ESX350-200903201-UG
virtual disks and update Service Console packages
for net-snmp and libxml2.
2. Relevant releases
VMware ESXi 3.5 without patch ESXe350-200901401-I-SG
VMware ESX 3.5 without patches ESX350-200901401-SG,
ESX350-200901409-SG,
ESX350-200901410-SG
NOTE: ESX 2.5.4 is in Extended Support and its end of support (Security
and Bug fixes) is 10/08/2008. Users should plan to upgrade to at least
2.5.5 and preferably the newest release available before the end of
extended support.
ESX Server prior to 2.5.4 are no longer in Extended Support. Users
should upgrade to a supported version of the product.
The VMware Infrastructure Support Life Cycle Policy can be
found here: http://www.vmware.com/support/policies/eos_vi.html
VMware Workstation 5.5.8 and earlier,
VMware Player 2.0.5 and earlier,
VMware Player 1.0.8 and earlier,
VMware Server 1.0.9 and earlier,
VMware ESXi 3.5 without patch ESXe350-200811401-O-SG
VMware ESX 3.5 without patches ESX350-200811406-SG and
ESX350-200811401-SG
VMware ESX 3.0.3 without patches ESX303-200811404-SG and
*Affected products:*
This behavior is only present in Workstation 6.0 and VMware Player 2.0.
This issue does not affect any released version of VMware Server, VMware
ESX Server, or VMware GSX Server.
*How to disable this behavior*
You can disable this behavior by adding an entry to the host
configuration file. This will override any VM-specific configuration and
This behavior is only present in Workstation 6.0, Workstation 6.0 with
ACE Option Pack, and VMware Player 2.0.
This issue does not affect any released version of VMware Server, VMware
ESX Server, or VMware GSX Server.
This issue also does not affect deployed ACE 2.0 virtual machines.
*How to disable this behavior*
iDefense confirmed the existence of this vulnerability in the following
VMware products.
VMware Workstation 6.0.2.59824 for Linux
VMware GSX Server 3.2.1.14497 for Linux
VMware ESX Server 3.0.1.32039
All versions of all products which include a set-uid vmware-authd binary
are suspected to be vulnerable.
V. WORKAROUND
> admin your own box as well as the vms you develop in. If your host has
> gotten exploited, whether or not they can execute something in a vm is the
> least of your problems. Once again, host security rules all.
Agreed. And this is the important part. Even if people are using an
"enterprise-class" solution such as OpenVZ (which shares a Linux
kernel with many virtual environments) or the VMware ESX Server
(which, if I recall correctly, runs its own operating system on the
host machine).
>
> Let's sum this up, folks: this functionality poses no threat to the host
> platform. So, if someone cracks the *host* isn't that fact alone far more
I. BACKGROUND
---------------------
"VMware is a provider of virtualization software which runs on
Microsoft Windows, Linux, and Mac OS X. VMware's enterprise
software, VMware ESX Server, runs directly on server hardware
without requiring an additional underlying operating system".
from wikipedia
II. DESCRIPTION
ESX patches for OpenSSL, vim and bind resolve several security
issues.
2. Relevant releases
VMware ESX 3.0.3 without patches ESX303-200903406-SG,
ESX303-200903405-SG,
ESX303-200903403-SG
VMware ESX 3.0.2 without patches ESX-1008409, ESX-1008408,
ESX-1008406
~ shared folder (HGFS), it is possible for a program running in the
~ guest to gain access to the host's file system and create or modify
~ executable files in sensitive locations.
NOTE: VMware Server is not affected because it doesn't use host to
~ guest shared folders. No versions of ESX Server, including
~ ESX Server 3i, are affected by this vulnerability. Because
~ ESX Server is based on a bare-metal hypervisor architecture
~ and not a hosted architecture, and it doesn't include any
~ shared folder abilities. Fusion and Linux based hosted
~ products are unaffected.
Service Console package krb5 has been updated to version
krb5-1.2.7-70.
2. Relevant releases
VMware ESX 3.5.0 without patch ESX350-200906407-SG
3. Problem Description
a. Service Console package krb5 update to version krb5-1.2.7-70
- -----------------------------------------------------------------------
VMware Security Advisory
Advisory ID: VMSA-2009-0014
Synopsis: VMware ESX patches for DHCP, Service Console kernel,
and JRE resolve multiple security issues
Issue date: 2009-10-16
Updated on: 2009-10-16 (initial release of advisory)
CVE numbers: CVE-2009-0692 CVE-2009-1893 CVE-2009-0692
CVE-2008-4210 CVE-2008-3275 CVE-2008-5356
https://www.trustwave.com/spiderlabs/advisories/TWSL2010-002.txt
Published: 2010-03-30 Version: 1.0
Vendor: VMware, Inc (http://www.vmware.com)
Product: VMWare VirtualCenter, VMWare ESX
Versions affected: VirtualCenter 2.5, 2.0.x, ESX 3.5, ESX 3.0.x
Product description:
VMWare Infrastructure is a virtualized environment that
allows multiple virtual machines (VMs) to run on a single
Update for Service Console package net-snmp
2. Relevant releases
VMware ESX 3.5 without patch ESX350-201002401-SG
3. Problem Description
a. Service Console package net-snmp updated
Next Page>>
|
|
|
