Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Cisco>
  3. VOIP
Vmware 6.5 Vulnerability...
jonvoip at gmail
Oct 14, 2021, 11:29 AM
Post #1 of 6 (689 views)
Permalink
This vulnerability from VMware...

https://www.vmware.com/security/advisories/VMSA-2021-0014.html

Trying to find patches for our C240M4S2s running ESXI 6.5 13932383 and
Cisco's latest build is 5310538...

Wondering if Cisco supports direct Vmware patching to the fixed version of
180715574...



Jonathan
Re: Vmware 6.5 Vulnerability... [ In reply to ]
lelio at uoguelph
Oct 14, 2021, 11:54 AM
Post #2 of 6 (689 views)
Permalink
It’s quite clear whether they support it or not. Just joking. It’s not clear at all. And the app managers don’t want to say yes or no either. They just keep saying, “it’s not tested”.

That all being said, from what I gather, from the UC on UCS pages, unless a collaboration application specifically says they only support a specific version of ESXi, that any maintenance releases or patches will be supported. As far as I can tell, only Expressway expressly (sorry, no pun intended) stipulates ESXi support. The great thing is, the latest patch before the latest unsupported Update will report back as the Update prior.

https://www.cisco.com/c/dam/en/us/td/docs/voice_ip_comm/uc_system/virtualization/cisco-collaboration-infrastructure.html


* ESXi maintenance releases within a supported ESXi major/minor (e.g. within "6.7", "6.7 U2"): all are supported unless otherwise indicated. Application versions with known incompatibilities will specify in their technical documentation if they do not support certain ESXi maintenance releases, or if they require a minimum maintenance release, or if they only support "up to" a certain maintenance release.
* ESXi patches within a supported ESXi major/minor/maintenance (e.g. patch 6.7.0d for "L1TF – VMM" mitigation): all are supported unless otherwise indicated, or if they clash with other requirements in this document.




From: cisco-voip <cisco-voip-bounces@puck.nether.net> On Behalf Of Jonathan Charles
Sent: Thursday, October 14, 2021 2:29 PM
To: cisco-voip@puck.nether.net
Subject: [cisco-voip] Vmware 6.5 Vulnerability...

CAUTION: This email originated from outside of the University of Guelph. Do not click links or open attachments unless you recognize the sender and know the content is safe. If in doubt, forward suspicious emails to IThelp@uoguelph.ca<mailto:IThelp@uoguelph.ca>

This vulnerability from VMware...

https://www.vmware.com/security/advisories/VMSA-2021-0014.html

Trying to find patches for our C240M4S2s running ESXI 6.5 13932383 and Cisco's latest build is 5310538...

Wondering if Cisco supports direct Vmware patching to the fixed version of 180715574...



Jonathan
Re: Vmware 6.5 Vulnerability... [ In reply to ]
kent at fredf
Oct 14, 2021, 12:01 PM
Post #3 of 6 (689 views)
Permalink
Haven’t used Cisco’s dedicated VMware builds in some time. Everything has been native VMware iso and patches with the auto update tool. Haven’t seen issues. M3/4/5.

Not sure if this helps you or not


Kent

> On Oct 14, 2021, at 12:32, Jonathan Charles <jonvoip@gmail.com> wrote:
>
> ?
> This vulnerability from VMware...
>
> https://www.vmware.com/security/advisories/VMSA-2021-0014.html
>
> Trying to find patches for our C240M4S2s running ESXI 6.5 13932383 and Cisco's latest build is 5310538...
>
> Wondering if Cisco supports direct Vmware patching to the fixed version of 180715574...
>
>
>
> Jonathan
> _______________________________________________
> cisco-voip mailing list
> cisco-voip@puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-voip
Re: Vmware 6.5 Vulnerability... [ In reply to ]
lelio at uoguelph
Oct 14, 2021, 12:58 PM
Post #4 of 6 (689 views)
Permalink
Oh, I forgot to add something. We do use the Cisco custom image, be will also apply patches accordingly, then, based on the UCS Hardware and Software Compatibility ( https://ucshcltool.cloudapps.cisco.com/public/ ) we will reconcile drivers accordingly.

From: cisco-voip <cisco-voip-bounces@puck.nether.net> On Behalf Of Kent Roberts
Sent: Thursday, October 14, 2021 3:01 PM
To: Jonathan Charles <jonvoip@gmail.com>
Cc: cisco-voip@puck.nether.net
Subject: Re: [cisco-voip] Vmware 6.5 Vulnerability...

CAUTION: This email originated from outside of the University of Guelph. Do not click links or open attachments unless you recognize the sender and know the content is safe. If in doubt, forward suspicious emails to IThelp@uoguelph.ca<mailto:IThelp@uoguelph.ca>

Haven’t used Cisco’s dedicated VMware builds in some time. Everything has been native VMware iso and patches with the auto update tool. Haven’t seen issues. M3/4/5.

Not sure if this helps you or not

Kent


On Oct 14, 2021, at 12:32, Jonathan Charles <jonvoip@gmail.com<mailto:jonvoip@gmail.com>> wrote:
?
This vulnerability from VMware...

https://www.vmware.com/security/advisories/VMSA-2021-0014.html

Trying to find patches for our C240M4S2s running ESXI 6.5 13932383 and Cisco's latest build is 5310538...

Wondering if Cisco supports direct Vmware patching to the fixed version of 180715574...



Jonathan
_______________________________________________
cisco-voip mailing list
cisco-voip@puck.nether.net<mailto:cisco-voip@puck.nether.net>
https://puck.nether.net/mailman/listinfo/cisco-voip
Re: Vmware 6.5 Vulnerability... [ In reply to ]
jonvoip at gmail
Oct 15, 2021, 6:58 AM
Post #5 of 6 (686 views)
Permalink
Thanks!

On Thu, Oct 14, 2021 at 2:58 PM Lelio Fulgenzi <lelio@uoguelph.ca> wrote:

> Oh, I forgot to add something. We do use the Cisco custom image, be will
> also apply patches accordingly, then, based on the UCS Hardware and
> Software Compatibility ( https://ucshcltool.cloudapps.cisco.com/public/ )
> we will reconcile drivers accordingly.
>
>
>
> *From:* cisco-voip <cisco-voip-bounces@puck.nether.net> *On Behalf Of *Kent
> Roberts
> *Sent:* Thursday, October 14, 2021 3:01 PM
> *To:* Jonathan Charles <jonvoip@gmail.com>
> *Cc:* cisco-voip@puck.nether.net
> *Subject:* Re: [cisco-voip] Vmware 6.5 Vulnerability...
>
>
>
> *CAUTION:* This email originated from outside of the University of
> Guelph. Do not click links or open attachments unless you recognize the
> sender and know the content is safe. If in doubt, forward suspicious emails
> to IThelp@uoguelph.ca
>
>
>
> Haven’t used Cisco’s dedicated VMware builds in some time. Everything has
> been native VMware iso and patches with the auto update tool. Haven’t seen
> issues. M3/4/5.
>
>
>
> Not sure if this helps you or not
>
>
>
> Kent
>
>
>
> On Oct 14, 2021, at 12:32, Jonathan Charles <jonvoip@gmail.com> wrote:
>
> ?
>
> This vulnerability from VMware...
>
>
>
> https://www.vmware.com/security/advisories/VMSA-2021-0014.html
>
>
>
> Trying to find patches for our C240M4S2s running ESXI 6.5 13932383 and
> Cisco's latest build is 5310538...
>
>
>
> Wondering if Cisco supports direct Vmware patching to the fixed version of
> 180715574...
>
>
>
>
>
>
>
> Jonathan
>
> _______________________________________________
> cisco-voip mailing list
> cisco-voip@puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-voip
>
>
Re: Vmware 6.5 Vulnerability... [ In reply to ]
lelio at uoguelph
Oct 15, 2021, 8:28 AM
Post #6 of 6 (686 views)
Permalink
One more thing to watch out for is incompatible VIB files upon upgrade attempt. I believe the solution is to delete those VIBs and then upgrade. Then reconcile again using ucshwtool

https://community.cisco.com/t5/unified-computing-system/cisco-custom-iso-upgrade-to-esxi-6-5-conflicting-vibs-error/td-p/3780417

Credit goes to Anthony Holloway for first alerting me to this. And for reminding of the link. ;)

Sent from my iPhone

On Oct 15, 2021, at 9:59 AM, Jonathan Charles <jonvoip@gmail.com> wrote:

?

CAUTION: This email originated from outside of the University of Guelph. Do not click links or open attachments unless you recognize the sender and know the content is safe. If in doubt, forward suspicious emails to IThelp@uoguelph.ca


Thanks!

On Thu, Oct 14, 2021 at 2:58 PM Lelio Fulgenzi <lelio@uoguelph.ca<mailto:lelio@uoguelph.ca>> wrote:
Oh, I forgot to add something. We do use the Cisco custom image, be will also apply patches accordingly, then, based on the UCS Hardware and Software Compatibility ( https://ucshcltool.cloudapps.cisco.com/public/ ) we will reconcile drivers accordingly.

From: cisco-voip <cisco-voip-bounces@puck.nether.net<mailto:cisco-voip-bounces@puck.nether.net>> On Behalf Of Kent Roberts
Sent: Thursday, October 14, 2021 3:01 PM
To: Jonathan Charles <jonvoip@gmail.com<mailto:jonvoip@gmail.com>>
Cc: cisco-voip@puck.nether.net<mailto:cisco-voip@puck.nether.net>
Subject: Re: [cisco-voip] Vmware 6.5 Vulnerability...

CAUTION: This email originated from outside of the University of Guelph. Do not click links or open attachments unless you recognize the sender and know the content is safe. If in doubt, forward suspicious emails to IThelp@uoguelph.ca<mailto:IThelp@uoguelph.ca>

Haven’t used Cisco’s dedicated VMware builds in some time. Everything has been native VMware iso and patches with the auto update tool. Haven’t seen issues. M3/4/5.

Not sure if this helps you or not

Kent


On Oct 14, 2021, at 12:32, Jonathan Charles <jonvoip@gmail.com<mailto:jonvoip@gmail.com>> wrote:
?
This vulnerability from VMware...

https://www.vmware.com/security/advisories/VMSA-2021-0014.html

Trying to find patches for our C240M4S2s running ESXI 6.5 13932383 and Cisco's latest build is 5310538...

Wondering if Cisco supports direct Vmware patching to the fixed version of 180715574...



Jonathan
_______________________________________________
cisco-voip mailing list
cisco-voip@puck.nether.net<mailto:cisco-voip@puck.nether.net>
https://puck.nether.net/mailman/listinfo/cisco-voip

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal