Software

Sun and VMware issue vital updates

  • Email a Friend
  • Print Page
Sun and VMware issue vital updates
Related Articles
Breaking Stories
By Shaun Nichols
Dec 5, 2008 2:50 PM
Tags: vmware | addresses | attacker | flaws | security | sun

Users are being advised to update their software after Sun Microsystems and VMware posted software fixes on Wednesday.

The patch from Sun addresses security and stability problems in Java, fixing 18 flaws covering stability, data corruption and security vulnerabilities.

Sun did not provide details on the exact nature of the security flaws, but the US Computer Emergency Response Team has advised users and administrators to install the Java update immediately.

The VMware patch, meanwhile, addresses two security flaws in a number of the company's virtualisation products.

The fix applies to VMWare Workstation versions 5 and 6, VMWare Player versions 1 and 2, and VMWare Server version 1.0.9 and earlier, as well as the company's ESX offering.

The first of the two flaws addresses a problem which could allow an attacker to remotely cause a memory corruption issue. If exploited, the attacker could cause the target system to crash and gain the ability to write code to memory.

The second addresses a previously patched flaw in the bzip2 library on ESX systems. If exploited, the vulnerability could be targeted by an attacker to crash the system while decompressing a specially-crafted archive file.
 

Copyright © 2009 vnunet.com
 


Comments

Be the first to comment on this article.
Thoughts on this article? Add a comment below.
Comment:
Want to participate in the discussion?
Or log in now to comment


Top Stories
Best 15 COOL products
Best 15 COOL products
Check out what's new for summer with these cool products.
 
Dell's mispriced products online - again
Dell's mispriced products online - again
Just what the heck is going on with Dell's Taiwanese Web site?
 
VARs question bidding war over Data Domain
VARs question bidding war over Data Domain
EMC's US$2.1b bid for Data Domain is starting to look high to solution providers, who look at the smaller company's revenue and the fact that EMC already has all the dedupe technology it should need.
 

Shortcutsall you need to know on...

  • NBN 
  • Windows 7 
  • Unified Communications 
  • Twitter 
  • Virtualisation 

Latest Comments

"Hi Cecil, Tony Lagan from Sony made it clear that is the very case. Thanks for your input. "
on Sony secures surveillance for resellers
by lguan Jul 1, 2009 6:33 PM
 
"Cool, I shall jump in my DeLorean right away, and head off to the Google developer day :-) Back ..."
on Google opens six-star Sydney ‘Googleplex’
by jgcertified Jun 30, 2009 10:11 PM
 
"A key issue for organisations is the complexity of licensing, particularly with the wide range ..."
on How resellers benefit from SAM
by easysam Jun 30, 2009 6:50 PM
 
"All these $150-$200 predictions assume that $40 million will be paid by home and small business ..."
on NBN keeps industry guessing
by peterh_oz Jun 30, 2009 5:06 PM
 
"I read eon below link unencrypting takes along time and another limitation appears to be if ..."
on First look at Windows 7 security
by kWAT Jun 30, 2009 9:56 AM
 

Polls

Has dealing with email security become easier?
   |   View results
The war on junk viruses is never ending, just when one thing is fixed another pops up
  36%
 
Hardware and software has become better at dealing with spam, fake email and virus attachments
  41%
 
Users are the key to dealing with email deluge they just need to be smarter about it
  24%
TOTAL VOTES: 59

Vote now
view previous polls »

CRN Magazine

Issue: 268 | June, 2009

CRN Magazine looks in-depth at the emerging issues and developments for the Channel, and provides insight, analysis and strategic information to help resellers better run their businesses.

Popular Tags

attacker business cloud computing data email flaws ibm microsoft microsystems network oracle security server software storage sun virtualisation vmware windows