Patch available: VMware vSphere 5.5 U1 NFS APD bug

In April 2014 was a bug in vSphere 5.5 U1 discovered, which can lead to APD events with NFS datastores.iSCSI, FC or FCoE aren’t affected by this bug, but potentially every NFS installation running vSphere 5.5 U1 was at risk. This bug is described in KB2076392. Luckily none of my customers ran into this bug, but this is more due to the fact, that most of my customers use FC/ FCoE or iSCSI. Until today the only solution was to avoid the upgrade to U1 and to use vSphere 5.5 GA (with some patches to fix the Heartbleed bug).

On 10. June 2014 VMware released the patch ESXi550-201406401-SG, which fixes the NFS APD bug. This patch also includes an updated OpenSSL library to address CVE-2014-0224. CVE-2014-0224 is not the Heartbleed bug! This is a new vulnerability in OpenSSL, which was discovered on 05. June 2014.

You can install the patch using the VMware Update Manager (VUM) or you can download the ZIP file and install it using the “esxcli software vib”  command. No matter which way you choose to install the patch, you should install the patch! Especially if you already use vSphere 5.5 U1 and NFS (most NetApp or Nutanix customers…).