vulnerable update for esxi 6.7 U2

baber · ‎05-27-2019

Dear friend

Hi

i have installed latest version of esxi 6.7 u2 (VMware ESXi 6.7.0 build-13006603)

now after login show this message :

This host is potentially vulnerable to issues described in CVE-2018-3646, please refer to https://kb.vmware.com/s/article/55636 for details and VMware recommendations.

i was read that but could not find any file for download

Is there any file for install on esxi ?

BR

Babak

Please mark helpful or correct if my answer resolved your issue.

jburen · ‎05-27-2019

In the article that you've read is a link to another article: VMware Knowledge Base It gives detailed info about the issue and also links to updates.

Consider giving Kudos if you think my response helped you in any way.

baber · ‎05-27-2019

As i am using VMware ESXi 6.7.0 build-13006603

had to do these steps ?

Enabling the ESXi Side-Channel-Aware Scheduler Version 2 (SCAv2) using the vSphere Web Client or vSphere Client

Connect to the vCenter Server using either the vSphere Web or vSphere Client.
Select an ESXi host in the inventory.
Click the Configure tab.
Under the System heading, click Advanced System Settings.
Click Edit
Click in the Filter box and search VMkernel.Boot.hyperthreadingMitigation
Select the setting by name
Change the configuration option to true (default: false).
Click in the Filter box and search VMkernel.Boot.hyperthreadingMitigationIntraVM
Change the configuration option to false (default: true).
Click OK.
Reboot the ESXi host for the configuration change to go into effect.

BR

Babak

Please mark helpful or correct if my answer resolved your issue.

jburen · ‎05-27-2019

Well, you're not forced to make these change. But you can. You would have to make a descision as to whether you're willing to take a slight performance hit. Carefully read the article...

Consider giving Kudos if you think my response helped you in any way.

All

vulnerable update for esxi 6.7 U2