Security updates for VMware ESX
VMware has published details of numerous security holes in its Tomcat and Java JRE packages for VMware ESX. Affected are ESX 3.5, 3.0.2 and 3.0.1. An update for version 3.5 has already become available, but developers are still working on the patches for versions 3.0.2 and 3.0.1. While some of the holes in Java JRE have been known since last October, the holes in Tomcat became apparent at the beginning of 2008. Users are therefore advised to install the updates soon.
- Updated Tomcat and Java JRE packages for VMware ESX 3.5, advisory by VMware