VMware Cloud Community
SHSGVA
Contributor
Contributor
‎01-04-2018 09:48 AM
Jump to solution

meltdown and spectre : esxi 5.1 ?

Hi All,

We have a "legacy" esxi 5.1 cluster for legacy / contractual apps (I guess we are not alone on this !!!).

It seems that the vmware release notes provide patching for 5.5 and +... but what of 5.1 ?

Is it not affected, EOLed, or something else ?

Thanks a lot for any answers,

Sebastian

Reply
0 Kudos
1 Solution

Accepted Solutions
TheBobkin
Champion
Champion
‎01-04-2018 12:45 PM
Jump to solution

Hello Sebastian,

For general release, as it is not listed alongside 5.5-6.5 in the VS&CB announcement, my own opinion is: I doubt it.

"VMware does not offer new hardware support, server/client/guest operating system updates, new security patches or bug fixes unless otherwise noted"

https://kb.vmware.com/s/article/2145103

Extended support (relatively Pricey!) *may* include some form of patch for this depending on viability:

"New Security Patches Annual security patch. Includes catastrophic/critical security fixes only"

"New Bug Fixes Ability to create hot patches for Severity 1 issues only" https://www.vmware.com/support/services/extended.html

Do understand that hot patches are generally non-trivial and need to be customized to suit the environment they are being applied to and thus even if something were to get hot patched for a specific environment, this does not mean the changes made in this could be used to create any form of universal patch for all 5.1 hosts.

Bob

View solution in original post

Reply
0 Kudos
6 Replies
daphnissov
Immortal
Immortal
‎01-04-2018 09:51 AM
Jump to solution

No statement yet. Monitor this VMSA for more information:  VMSA-2018-0002 - VMware Security & Compliance Blog - VMware Blogs

------------------
How to Ask for Help on Tech Forums
https://neonmirrors.net
Reply
0 Kudos
TheBobkin
Champion
Champion
‎01-04-2018 12:45 PM
Jump to solution

Hello Sebastian,

For general release, as it is not listed alongside 5.5-6.5 in the VS&CB announcement, my own opinion is: I doubt it.

"VMware does not offer new hardware support, server/client/guest operating system updates, new security patches or bug fixes unless otherwise noted"

https://kb.vmware.com/s/article/2145103

Extended support (relatively Pricey!) *may* include some form of patch for this depending on viability:

"New Security Patches Annual security patch. Includes catastrophic/critical security fixes only"

"New Bug Fixes Ability to create hot patches for Severity 1 issues only" https://www.vmware.com/support/services/extended.html

Do understand that hot patches are generally non-trivial and need to be customized to suit the environment they are being applied to and thus even if something were to get hot patched for a specific environment, this does not mean the changes made in this could be used to create any form of universal patch for all 5.1 hosts.

Bob

Reply
0 Kudos
SHSGVA
Contributor
Contributor
‎01-08-2018 02:52 AM
Jump to solution

Thanks to all for the answers.

Lets wait for 5.1 NOT to be patched (or patched) :smileygrin:

Considerding what happened with microsoft reg. Krack patching, would make sense to patch...

A side question, what is the impact is VMs are patched but not the Hosts ?

Reply
0 Kudos
admin
Immortal
Immortal
‎01-08-2018 02:58 AM
Jump to solution

ESXi 5.1 is End of life. So I dont think patch will be released for 5.1.

If you have extended support for 5.1 , then you may approach VMware support for patches.

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/support/product-lifecycle-matrix.p...

Regards,

Randhir

Reply
0 Kudos
SHSGVA
Contributor
Contributor
‎01-08-2018 07:57 AM
Jump to solution

Thanks we will see what we can do :smileygrin:

Reply
0 Kudos
daphnissov
Immortal
Immortal
‎01-08-2018 08:01 AM
Jump to solution

Upgrade, that's all you can do Smiley Happy

------------------
How to Ask for Help on Tech Forums
https://neonmirrors.net
Reply
0 Kudos