Portal Home > Knowledgebase > VMware Knowledge Base > VMware ESX 3.5 Update 4, Patch ESX350-200903228-UG: Updates Net-SNMP

VMware ESX 3.5 Update 4, Patch ESX350-200903228-UG: Updates Net-SNMP

Details

Release Date: March 30, 2009

 

Download Size: 
2.2MB 
Download Filename: 
ESX350-200903228-UG.zip 
md5sum: 
b04beb33f5af88c5c44bc5ab4d3a993c


Product VersionsESX 3.5 Update 4
Build153875
Also see KB 1001179.
Patch ClassificationUpdate
Supersedes
ESX350-200808405-SG
ESX350-200901409-SG
Requires
ESX350-200803214-UG
ESX350-200903202-UG
Virtual Machine Migration or Shutdown Required
 
Host Reboot RequiredNo
PRs Fixed345054 345332
Affected HardwareN/A
Affected SoftwareN/A
RPMs Includednet-snmp
net-snmp-libs
net-snmp-utils
Related CVE numbersCVE-2008-4309

Solution

Summaries and Symptoms

This patch includes the January 30, 2009 patch fix for ESX 3.5 U4, which is described as follows.

Security Update to SNMP in the Service Console

This patch updates the service console to resolve the following security issue:

A denial-of-service flaw was found in the way Net-SNMP processes SNMP GETBULK requests. A remote attacker who issued a specially-crafted request could cause the snmpd server to crash.

The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2008-4309 to this issue.

Deployment Considerations

None beyond the required patch bundles and reboot information listed in the table, above.

Based on VMware KB 1008095


Also Read

Language: