VMware vCenter Server Appliance Photon OS security patches
Last updated December 19, 2019
Add to MyLibrary
This document tracking VMware vCenter Server Appliance Photon bundled operating system patches released monthly.
You can choose from VMware Patch Download Center Download deliverables.
IMPORTANT : Due to issues affecting the deployment, as of November 14, 2017, vCenter Server Appliance 6.5 version has been deleted. This issue does not affect vCenter Server Windows installation. To resolve this problem, you must upgrade to vCenter Server Appliance 6.5 Update 1c or later. For more information, see KB 51124 .
installation steps
To Photon OS security patch to vCenter Server Appliance, one of the methods can be used.
- Using the GUI or CLI installer to deploy new vCenter Server Appliance.
For information about reinstalling vCenter Server Appliance, refer to " deploy vCenter Server Appliance and Platform Services Controller device" .
- By using the GUI or CLI installer, upgrading to vCenter Server Appliance version contains the latest Photon OS security patches.
For information about upgrading vCenter Server Appliance, see " Upgrading vCenter Server Appliance and Platform Services Controller device" .
- By using the device or device management interface housing repair device.
Important information : You can use the same Photon OS patches released in an update of the update vCenter Server Appliance.
If you try to use vCenter Server Appliance Management Interface basic version of vCenter Server Appliance 6.5 does not support the update directly to the current version of OS patches Photon, the process will fail. This is expected, but you see the error message is generic. To see the correct error message, check the log file.
This means that if you have updated to vSphere 6.5 Update 2 after the release of version immediately, you can not be directly applied Photon OS patches released after 6.5 Update 3 of vSphere. VCenter Server Appliance must first be updated to version 6.5 Update 3, and then the selected Photon OS patches applied to the device.
For information vCenter Server Appliance repair, please refer to repair vCenter Server Appliance .
-
Based backup and restore files during the restore process, you will deploy new equipment that contains the latest Photon OS security patches.
About performing vCenter Server Appliance -based backup and restore file information , see vCenter Server Appliance backup and restore file-based.
- Moving vCenter Server on a Windows instance to vCenter Server Appliance version contains the latest Photon OS security patches.
VCenter Server on Windows related to the migration of the information vCenter Server Appliance, see " Migrating to Windows vCenter Server vCenter Server Appliance" .
Upgrade Instructions
It does not support 6.7 Update 3 vCenter Server 6.5 Update 3f upgrade from to.
vCenter Server Appliance Photon OS security patches
vSphere 6.5 Update 1
Release date |
Internal Number |
Patch name |
Affected packages |
The new package version |
Resolved CVE |
---|---|---|---|---|---|
September 21, 2017 |
6671409 |
U1a 6.5 |
httpd |
2.4.27-1 |
|
Secret |
2.7a1-3 |
||||
linux |
4.4.79-1 |
||||
curse |
6.0-5 |
||||
October 26, 2017 | 6816762 | U1b 6.5 For more information about other fixes, click here ) |
ruby | 2.4.0-5 | CVE-2017-9224 |
System Log | 8.15.0-6 | ||||
linux | 4.4.82-1 | ||||
shadow |
4.2.1-11 | CVE-2017-12424 | |||
December 19, 2017 | 7312210 | U1d 6.5 This release also addresses the PHSA-2017-0037 all relevant medium security issues before the Photon OS. For more information about other fixes, click here ) |
linux | 4.4.88-1 | |
dnsmasq | 2.76-2 | CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 |
|||
Pell | 5.22.1-5 | CVE-2017-12883 CVE-2017-12837 |
|||
ruby |
2.4.2-1 | CVE-2017-0898 | |||
February 15, 2018 | 7801515 | 6.5 U1f (Photon OS security fixes) |
linux | 4.4.110-2 | |
libgcrypt |
1.7.6-3 | CVE-2017-0379 | |||
区域 |
1.12.0-2 | CVE-2017-1000381 | |||
诅咒 | 6.0-8 | ||||
libtasn1 |
4.12-1 | CVE-2017-10790 | |||
get | 1.18-3 | ||||
procmail |
3.22-4 | CVE-2017-16844 | |||
同步 | 3.1.2-4 | ||||
4月 |
1.5.2-7 | CVE-2017-12613 | |||
2018年3月20日 | 8024368 | 6.5磅 (此处列出了Photon OS的安全修复程序。 有关其他修复的详细信息,请单击 此处) |
linux | 4.4.115-1 | |
libtasn1 |
4.13-1 | CVE-2018-6003 | |||
dnsmasq |
2.76-5 | CVE-2017-15107 |
vSphere 6.5更新2
发布日期 |
内部编号 |
补丁名称 |
受影响的包裹 |
新包装版本 |
解决的CVE |
---|---|---|---|---|---|
2018年5月3日 |
8307201 | 6.5 U2 (此处列出了Photon OS的安全修复程序。 此版本还解决了PHSA-2018-1.0-0109之前Photon OS中所有相关的中等安全性问题 。 有关其他修复的详细信息,请单击 此处) |
glibc |
2.22-18 |
|
tdnf |
1.1.0-3 |
||||
卷曲 |
7.58.0-1 |
||||
红宝石 |
2.4.3-2 |
||||
python2 |
2.7.13-4 |
||||
python-rpm |
4.13.0.1-4 |
||||
转数 |
4.13.0.1-4 |
||||
krb5 |
1.16-1 |
||||
2018年5月31日 | 8667236 |
6.5 U2a (Photon OS的安全修复程序) |
系统的 |
228-45 |
|
荨麻 |
3.3-1 |
||||
补丁 |
2.7.5-3 |
||||
httpd |
2.4.33-1 |
||||
librelp |
1.2.9-3 |
||||
linux |
4.4.131-2 |
||||
同步 |
3.1.3-1 |
||||
2018年6月28日 | 8815520 | 6.5 U2b 这里列出了Photon OS的安全修复程序。 有关其他修复的详细信息,请单击 此处) |
补丁 | 2.7.5-4 | |
解压缩 |
6.0-9 | CVE-2018-1000035 | |||
2018年11月29日 | 10964411 | 6.5 U2d (此处列出了Photon OS的安全修复程序。 有关其他修复的详细信息,请单击此处) |
linux | 4.4.157-1 |
|
卷曲 |
7.59.0-3 | CVE-2018-0500 | |||
python3 | 3.5.5-2 | ||||
补丁 | 2.7.5-5 | ||||
诅咒 | 6.0-9 | ||||
libmspack | 0.5alpha-4 | ||||
pcre | 8.41-2 | ||||
生产 | 3.3.15-1 | ||||
2018年12月20日 | 11347054 | 6.5 U2e (Photon OS的安全修复程序) |
转数 | 4.13.0.2-1 | |
小精灵 | 0.169-2 | ||||
libxml2 | 2.9.8-2 | ||||
系统的 | 228-48 | ||||
2019年3月21日 | 12863991 | 6.5 U2f (光子操作系统的安全修复程序) |
系统的 | 228-49 | CVE-2018-15686 |
libtirpc | 1.0.1-5 | CVE-2018-14621 | |||
2019年5月30日 | 13834586 | 6.5 U2h (光子操作系统的安全修复程序) |
系统的 |
228-52 | CVE-2018-6954 |
linux |
4.4.177-1 | CVE-2019-7221 | |||
libxslt |
1.1.29-5 | CVE-2019-11068 | |||
坚果 |
3.5.15-4 | CVE-2019-3829 |
vSphere 6.5更新3
发布日期 |
内部编号 |
补丁名称 |
受影响的包裹 |
新包装版本 |
解决的CVE |
---|---|---|---|---|---|
2019年7月2日 | 14020092 | 6.5 U3 (此处列出了Photon OS的安全修复程序。 有关其他修复的详细信息,请单击 此处)
|
保险丝 |
2.9.5-3 |
|
卷曲 |
7.59.0-7 |
||||
帕拉米科 |
1.17.6-2 |
||||
linux |
4.4.177-1 4.4.182-1 |
||||
系统的 |
228-52
|
||||
佩尔 |
5.24.1-4 |
||||
python3 |
3.5.6-4 |
||||
系统日志 |
8.15.0-9 |
||||
PyYAML |
3.12-3 |
||||
python-请求 |
2.9.1.2 |
||||
python2 |
2.7.15-5
|
||||
glibc |
2.22-26 |
||||
隐密 |
2.6.1-5 |
||||
格里布 |
2.47.6-3 |
||||
红宝石 |
2.5.3-1 |
||||
httpd |
2.4.39 | CVE-2018-11763 | |||
2019年7月25日 | 14156547 | 6.5 U3a (Photon OS的安全修复程序) |
get |
1.20.3-1 | |
2019年8月27日 | 14389939 |
6.5 U3b (Photon OS的安全修复程序) |
bzip2 | 1.0.6-7 | CVE-2019-12900 |
2019年9月24日 | 14690228 | 6.5 U3c (Photon OS的安全修复程序) |
解压缩 | 6.0-11 |
CVE-2019-13232 |
libxslt | 1.1.29-6 |
||||
libmspack | 0.7.1 alpha-2 |
||||
外籍人士 | 2.2.4-2 |
CVE-2018-20843 | |||
补丁 | 2.7.5-6 |
CVE-2019-13638 | |||
linux | 4.4.189-1 |
||||
2019年10月24日 |
14836121 |
6.5 U3d (此处列出了Photon OS的安全修复程序。 有关其他修复的详细信息,请单击 此处) |
linux |
4.4.191-1 |
|
2019年11月26日 |
15127636 |
6.5 U3e (Photon OS的安全修复程序) |
须藤 |
1.8.20p2-2 |
|
重击 |
4.3.48-4 |
||||
2019年12月19日 | 15259038 |
6.5 U3f (此处列出了Photon OS的安全修复程序。 有关其他修复的详细信息,请单击 此处) |
sqlite-autoconf | 3.27.2-3 | |
linux | 4.4.193-1 | CVE-2019-14835 | |||
系统的 | 228-56 | CVE-2019-3842 | |||
格里布 | 2.58.3-1 | ||||
卷曲 | 7.59.0-8 | CVE-2019-5436 | |||
vim | 7.4-12 | CVE-2019-12735 | |||
python3 | 3.5.6-10 | CVE-2019-10160 | |||
PostgreSQL | 9.6.14-1 | CVE-2019-10164 | |||
python2 | 2.7.15-10 | CVE-2019-16056 | |||
文字 | 0.19.5.1-6 | CVE-2018-18751 | |||
柏油 | 1.29-4 |
上面列出的补丁是累积的。最新补丁的内容也将累积先前补丁的内容。