HPE Community
HPE SimpliVity
1822523 Members
2642 Online
109642 Solutions
New Discussion

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

 
BrianK-54494
Occasional Advisor

‎03-05-2025 08:41 AM - last edited on ‎03-05-2025 07:49 PM by

‎03-05-2025 08:41 AM - last edited on ‎03-05-2025 07:49 PM by

VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Was just checking if there was specific approval for the ESXi patches for ESXi 8 or 7.  Since I was not seeing anything obvious, just posting.  Confirmed that the Interopt guide still only says that the minor version updates are fine, etc, only under the vCenter Server section and not ESXi section.

Support Content Notification - Support Portal - Broadcom support portal

Response Matrix:

VMware Product      Version      Running On      CVE      CVSSv3      Severity      Fixed Version      Workarounds      Additional Documentation

VMware ESXi      8.0     Any     CVE-2025-22224, CVE-2025-22225, CVE-2025-22226     9.3, 8.2, 7.1     Critical     ESXi80U3d-24585383     None     FAQ

VMware ESXi     8.0     Any       CVE-2025-22224, CVE-2025-22225, CVE-2025-22226     9.3, 8.2, 7.1     Critical     ESXi80U2d-24585300     None     FAQ

VMware ESXi     7.0      Any       CVE-2025-22224, CVE-2025-22225, CVE-2025-22226     9.3, 8.2, 7.1     Critical     ESXi70U3s-24585291     None     FAQ

0 Kudos
Reply
13 REPLIES 13
support_s
System Recommended

‎03-05-2025 09:42 AM

‎03-05-2025 09:42 AM

Query: VMSA-2025-0004: VMware ESXi Critical Patch

System recommended content:

1. HPE customized image VMware-ESXi-6.5U3 and 6.7U3 Release notes for VMware vSphere upgrade/update on HPE Hyper Converged 250 and HPE Hyper Converged 380 System

2. Gen9 Service Pack for ProLiant 2021.10.1 - Component Release Notes

 

Please click on "Thumbs Up/Kudo" icon to give a "Kudo".

 

Thank you for being a HPE valuable community member.


Accept or Kudo

0 Kudos
Reply
BrianK-54494
Occasional Advisor

‎03-05-2025 10:37 AM

‎03-05-2025 10:37 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Just a heads up.. I did put in a ticket earlier, and can update when I hear something:

Case Reference ID: 5388354531
Status: Case is generated and in Progress
Subject: VMSA-2025-0004: VMware ESXi Critical Patch SimpliVity
Product: HPE SimpliVity 380 Gen10 Node
Product Number: Q8D81A

 

 

0 Kudos
Reply
BrianK-54494
Occasional Advisor

‎03-05-2025 11:43 AM

‎03-05-2025 11:43 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Sigh... Standard Standard....

Per the interopt guide it is only supported up to U3r, it has been advanced to engineering to be looked at.  We will be closing the ticket, but you can follow up in a week or two.  Not an option to just leave the ticket open and have them updated it when corrected.

0 Kudos
Reply
Kipp_Glover
HPE Pro

‎03-05-2025 12:51 PM

‎03-05-2025 12:51 PM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Hi Brian!

Engineering is working to qualify and create offline bundles for ESXi 7.0 U3s and 8.0 U3d.  Once these bundles are released, you can use the upgrade manager to upgrade to these patches.   I am pushing on this and can provide an ETA soon.  I will post the ETA here.  If anyone cannot wait for the qualification and bundles, you can obtain the patch directly from Broadcom and apply the patch via esxcli.  These patches won't be "officially" supported until the Interop is updated.  

Cheers!
/Kipp



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
Reply
BrianK-54494
Occasional Advisor

‎03-06-2025 03:33 AM

‎03-06-2025 03:33 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Very much appreciated Kipp!  Will be watching.

0 Kudos
Reply
Kipp_Glover
HPE Pro

‎03-07-2025 06:10 AM

‎03-07-2025 06:10 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Good day Brian!

Update:   We have a target date of the end of April to release custom ESXi bundles for 7.0U3s & 8.0U3d, along with a new catalog file.  Once these are released, a customer can use Upgrade Manager to apply these patches.

Note:  This is a target date and may change.  I will post an update if this date changes.  

/Kipp



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
0 Kudos
Reply
jfrobs
Frequent Advisor

‎03-07-2025 06:30 AM

‎03-07-2025 06:30 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

That's what a lot of people criticize simplivity for. The slowness of bundle validation to patch urgent updates.

 

Reply
sdfdsdfdfdf
Member

‎03-10-2025 03:20 AM

‎03-10-2025 03:20 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

I tested the Vmware patchbundle and noticed 'esxcli software vib' commands are deprecated in Vsphere 8

'ESXi version change is not allowed using esxcli software vib commands. Please use a supported method to upgrade ESXi'

so I had to use 'esxcli software profile update'  to apply the patch.

 

0 Kudos
Reply
Marcel_I
Occasional Advisor

‎03-11-2025 01:13 AM

‎03-11-2025 01:13 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Good morning Kipp,

Do you expect the approval of the VMware patch any sooner than that so we can update the hosts using cli? Or is that expected around the same timeframe as well? We do not necessarily need to wait for the Custom SimpliVity ESXi image as long as the patch is supported by HPE. 

Thanks

0 Kudos
Reply
BrianK-54494
Occasional Advisor

‎03-11-2025 05:19 AM

‎03-11-2025 05:19 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Exactly this. Normally most of the SimpliVity site support staff all really only need the word that it is approved to install the patch and be supported still.   Else the message is always the consistent "you will no longer be in a supported configuration, and thus risk any help".

0 Kudos
Reply
Kipp_Glover
HPE Pro

‎03-11-2025 11:25 AM

‎03-11-2025 11:25 AM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Good day all!

If you cannot wait for the custom SimpliVity ESXi bundle, you can source the patch directly from Broadcom and install it via esxcli.  HPE will support the patch.  The Interop Guide will not be updated until the custom SimpliVity ESXi bundle is published at the end of April.  

Cheers!
/Kipp



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
Reply
Kipp_Glover
HPE Pro

‎03-11-2025 07:43 PM

‎03-11-2025 07:43 PM

Re: VMSA-2025-0004: VMware ESXi Critical Patch Question/Verification

Today, there was a Customer Notice published for these patches:  https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-a00146320en_us



I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
Reply
support_s
System Recommended

‎03-21-2025 01:51 AM

‎03-21-2025 01:51 AM

Query: VMSA-2025-0004: VMware ESXi Critical Patch

Hello,

 

Let us know if you were able to resolve the issue.

If you are satisfied with the answers then kindly click the "Accept As Solution" button for the most helpful response so that it is beneficial to all community members.

 

 

Please click on "Thumbs Up/Kudo" icon to give a "Kudo".


Accept or Kudo

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.