This week VMware published a new product patch for the vCenter Server 6.5 which is upgrading the vCenter to version 6.5 Update 1d.
What does it change?
The new patch is fixing security issues and comes with a couple of bug fixes for known issues. Detailed information can be found in the VMware KB 2151314.
Also pay attention to the Release Notes of this version, which can be found here.
In the “What’s New” section, you can find the details, what has been improved:
- vCenter Server 6.5 Update 1d addresses issues that have been documented in the Resolved Issues section and Photon OS security vulnerabilities. For more information, see VMware vCenter Server Appliance Photon OS Security Patches.
- Update of the Oracle (Sun) JRE package to version 1.8.0_141.
- vCenter Server 6.5 is updated to use the 4.3.9 version of the Spring Framework.
- The OpenSSL package is updated to version openssl-1.0.2l.
- The Tomcat package is updated to version 8.5.15.
- Apache Struts is updated to version 2.5.13 to resolve CVE-2017-9805, CVE-2017-9804 and CVE-2017-9793.
- Eclipse Jetty is upgraded to version 9.2.22.
How do I update?
There are a couple of possibilities to patch an existing vCenter to the newest build. Procedures vary of course depending on the installed version. VMware provides detailed information and guidelines in the VMware Docs. In there they also provide steps how to patch vCenter High Availability Environments.
I decided to patch my test vCenter this time via the ISO file, which has to be attached to the VM, and the installation procedure can be launched via the VAMI.
The ISO files to patch the VCSA can be downloaded here: https://my.vmware.com/group/vmware/patch#search
Just select “VC” in the dropdown and 6.5.0 in the version. Select the patch you need in the third column and hit “Download”.
- After the download, attach the ISO file to the vCenter VM, then connect to the VAMI via the interface https://vCenterIP:5480.
- Log in as root.
- Click on “Update” to the left
- Click on “Check Updates” to the right, then select “Check CDROM”:
- The CDROM is being validated. Select “Install Updates” on the right to start the patching:
- Following the wizard is pretty straight forward. Wait for it to finish:
- All which is left to do is reboot the appliance, and verify that the installation procedure was successful and health indicators are all green following the reboot.
Note: The update can be executed also via the VMware online repository. Check this post to see how to do this if you need to connect to the Web through a Proxy server.