VMware security updates

Number: AV17-030
Date: 14 March 2017

Purpose

The purpose of this advisory is to bring attention to security advisories released by VMware.

Assessment

VMware has released product updates addressing security issues for multiple VMware products.

Affected Products:

• VMware Horizon Desktop as-a-Service Platform 6.x and 7.x
• VMware vCenter Server 5.5, 6.0 and 6.5
• VMware vRealize Operations Manager 6.x
• VMware vRealize Hyperic Server 5.x
• VMware Workstation Pro / Player 12.x
• VMware Fusion Pro / Fusion 8.x

CVE References: CVE-2017-4901, CVE-2017-5638

Suggested Action

CCIRC recommends that system administrators test and deploy the vendor released updates on affected platforms accordingly.

References:

• http://www.vmware.com/security/advisories/VMSA-2017-0004.html
• http://www.vmware.com/security/advisories/VMSA-2017-0005.html