VMware vSphere and vCOps updates to third party libraries


a. vCenter and ESX update to JRE 1.6.0 Update 31The Oracle (Sun) JRE is updated to version 1.6.0_31, which addresses multiple security issues. Oracle has documented the CVE identifiers that are addressed by this update in the Oracle Java SE Critical Patch Update Advisory of February 2012.Column 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.

Affected Software

CPE Name Name Version
vcenter vCenter 5.0 Update 2
vcenter vCenter 4.1 Update 3
update manager 5.0
esx ESX410-201208101-SG
vcenter vCenter 4.0 Update 4a
virtualcenter 2.5
update manager Update Manager 4.1 Update 3
update manager Update Manager 4.0 Update 4a
esx ESX400-201209401-SG
esx 3.5
esxi ESXi-5.0.0-20121201001
esxi ESXi410-201208101-SG
esxi 4.0
esxi 3.5
esx 4.0
esx ESX410-201208103-SG
esx ESX410-201208107-SG
esx ESX410-201208102-SG
esx ESX400-201209402-SG
esx ESX410-201208104-SG
esx ESX410-201208106-SG
esx ESX410-201208105-SG
esx ESX400-201209404-SG
vcops vCOps 5.0.3
vco see VMSA-2011-0005