Document ID: 279953
http://support.veritas.com/docs/279953
E-Mail this document to a colleague
http://support.veritas.com/docs/279953
E-Mail this document to a colleague
Security fix for VERITAS Cluster Server 2.2 on VMWare ESX - Symantec Security Advisory SYM05-023
Details:
This patch resolves a buffer overflow vulnerability in VERITAS Cluster Server 2.2 for VMWare ESX 2.1.
This patch can be applied to 2.2 MP2 only. All other 2.2 versions must first be upgraded to 2.2 MP2: http://support.veritas.com/docs/267931
All versions of VERITAS Cluster Server 2.2 for ESX 2.1 are affected, and should be upgraded to MP2 and this patch applied. For further information on this vulnerability, refer to http://support.veritas.com/docs/279870 which also contains links to patches for other platforms and versions.
This patch also contains a number of fixes for incidents not related to security (see below).
Refer to the information included in the patch file for installation instructions
Download Now - 12650 K
File Name: ESX_VCS2.2_MP2_i18n-secfix_e418977a.tar_279953.gz
File Type: Patch
Click Below to Browse the FTP files by Product:
ftp.support.veritas.com/pub/support/products
This patch resolves a buffer overflow vulnerability in VERITAS Cluster Server 2.2 for VMWare ESX 2.1.
This patch can be applied to 2.2 MP2 only. All other 2.2 versions must first be upgraded to 2.2 MP2: http://support.veritas.com/docs/267931
All versions of VERITAS Cluster Server 2.2 for ESX 2.1 are affected, and should be upgraded to MP2 and this patch applied. For further information on this vulnerability, refer to http://support.veritas.com/docs/279870 which also contains links to patches for other platforms and versions.
This patch also contains a number of fixes for incidents not related to security (see below).
Refer to the information included in the patch file for installation instructions
Download Now - 12650 K
File Name: ESX_VCS2.2_MP2_i18n-secfix_e418977a.tar_279953.gz
File Type: Patch
Click Below to Browse the FTP files by Product:
ftp.support.veritas.com/pub/support/products
Supplemental Material:
| System: Ref.# | Description |
| ETrack: 255994 | Modify HAD to use syslog API to log event messages. |
| ETrack: 322217 | Removed unnecessary call from hacf. |
| ETrack: 426545 | Add engine check for username password length. |
| ETrack: 426548 | Packaging changes to remove root suid in some binaries. |
Products Applied:
Cluster Server for UNIX 2.2 MP2 (Linux)
Cluster Server for UNIX 2.2 MP2 (Linux)
Last Updated: November 08 2005 06:35 PM GMT
Expires on: 365 days from publish date
Subscribe to receive critical updates about this document
Expires on: 365 days from publish date
Subscribe to receive critical updates about this document
Subjects:
Cluster Server for UNIX
Application: Patches
Cluster Server for UNIX
Application: Patches
Languages:
English (US)
English (US)
Operating Systems:
VMWare ESX
VMWare ESX
2.1
Symantec World Headquarters:
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
THE INFORMATION PROVIDED IN THE SYMANTEC SOFTWARE KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. SYMANTEC SOFTWARE DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL SYMANTEC SOFTWARE OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES,EVEN IF SYMANTEC SOFTWARE OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.