3b. ESXi OpenSLP heap-overflow vulnerability (CVE-2021-21974)
The ESXi team has investigated these vulnerabilities and determined that the possibility of exploitation can be removed by performing the steps detailed in the resolution section of this article. This workaround is meant to be a temporary solution only and customers are advised to deploy the patches documented in the aforementioned VMSAs.
Did VMware released any specific patch to fix this vulnerability?
Below is the work around provided KB article provided by VMware .
DO I need to all steps until last 4th step , are ese I need perform until second step of first 2 points .
- Stop the SLP service on the ESXi host with this command:
/etc/init.d/slpd stop
Note: The SLP service can only be stopped when the service is not in use. Use the following command to view the operational state of Service Location Protocol Daemon:
esxcli system slp stats get
- Run the following command to disable the SLP service:
esxcli network firewall ruleset set -r CIMSLP -e 0 To make this change persist across reboots:
chkconfig slpd off
To check if the change is applied across reboots:
chkconfig --list | grep slpd
output: slpd off
To remove the workaround perform the following steps:
- Run the following command to enable the ruleset of SLP service:
esxcli network firewall ruleset set -r CIMSLP -e 1
- Run the following command to change the current startup information of slpd service:
chkconfig slpd on
Run the following command to check if the change is applied after running the above step (Step 2#):
chkconfig --list | grep slpd
output: slpd on
- Run the following command to start the SLP service:
/etc/init.d/slpd start
- Disable and enable the CIM agent,
