This site will be decommissioned on December 31st 2024. After that date content will be available at techdocs.broadcom.com.

Release Date: 05 March, 2024

IMPORTANT:

This patch is only available for Extended Support Customers at https://customerconnect.vmware.com/downloads/#extended_support

What's in the Release Notes

The release notes cover the following topics:

Build Details

Download Filename: ESXi650-202403001.zip
Build: 23084120
Download Size: 331.1 MB
md5sum: d1f815a95cc2ae8d2592fcd5cf72a34f
sha256checksum: 991465ca3e209d2cf8efd15d1d3d25794f293e119496e962d547baf3bca3def1
Host Reboot Required: Yes
Virtual Machine Migration or Shutdown Required: Yes

Bulletins

Bulletin ID Category Severity
ESXi650-202403401-SG Security Critical
ESXi650-202403402-SG Security Critical

Rollup Bulletin

This rollup bulletin contains the latest VIBs with all the fixes since the initial release of ESXi 6.5.

Bulletin ID Category Severity
ESXi650-202403001 Security Critical

IMPORTANT: For clusters using VMware vSAN, you must first upgrade the vCenter Server system. Upgrading only ESXi is not supported.
Before an upgrade, always verify in the VMware Product Interoperability Matrix compatible upgrade paths from earlier versions of ESXi, vCenter Server and vSAN to the current version.

Image Profiles

VMware patch and update releases contain general and critical image profiles. Application of the general release image profile applies to new bug fixes.

ESXi-6.5.0-20240304001-standard
ESXi-6.5.0-20240304001-no-tools

For more information about the individual bulletins, see the Download Patches page and the Resolved Issues section.

Patch Download and Installation

The typical way to apply patches to ESXi hosts is by using the VMware vSphere Update Manager. For details, see About Installing and Administering VMware vSphere Update Manager.

ESXi hosts can be updated by manually downloading the patch ZIP file from VMware Customer Connect. Navigate to Products and Accounts > Product Patches. From the Select a Product drop-down menu, select ESXi (Embedded and Installable) and from the Select a Version drop-down menu, select 6.5.0. Install VIBs by using the esxcli software vib update command. Additionally, the system can be updated by using the image profile and the esxcli software profile update command. For more information, see vSphere Command-Line Interface Concepts and Examples and vSphere Upgrade Guide.

Resolved Issues

The resolved issues are grouped as follows.

ESXi650-202403401-SG
Patch Category Security
Patch Severity Critical
Host Reboot Required Yes
Virtual Machine Migration or Shutdown Required Yes
Affected Hardware N/A
Affected Software N/A
VIBs Included
  • VMware_bootbank_vsan_6.5.0-3.199.22695722
  • VMware_bootbank_vsanhealth_6.5.0-3.199.22695723
  • VMware_bootbank_esx-tboot_6.5.0-3.199.23084120
  • VMware_bootbank_esx-base_6.5.0-3.199.23084120
PRs Fixed  N/A
Related CVE numbers CVE-2024-22253, CVE-2024-22254, CVE-2024-22255

This patch updates vsanvsanhealthesx-tboot, and esx-base VIBs to resolve the following issue:

  • This release resolves CVE-2024-22253, CVE-2024-22254, and CVE-2024-22255. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2024-0006.

ESXi650-202403402-SG
Patch Category Security
Patch Severity Critical
Host Reboot Required Yes
Virtual Machine Migration or Shutdown Required Yes
Affected Hardware N/A
Affected Software N/A
VIBs Included
  • VMW_bootbank_xhci-xhci_1.0-3vmw.650.3.199.23084120
PRs Fixed  N/A
Related CVE numbers CVE-2024-22252

Updates the xhci VIB to resolve the following issue:

  • This release resolves CVE-2024-22252. For more information on this vulnerability and its impact on VMware products, see VMSA-2024-0006.

    .

    ESXi-6.5.0-20240304001-standard
    Profile Name ESXi-6.5.0-20240304001-standard
    Build For build information, see the top of the page.
    Vendor VMware by Broadcom, Inc.
    Release Date March 05, 2024
    Acceptance Level PartnerSupported
    Affected Hardware N/A
    Affected Software N/A
    Affected VIBs
    • VMware_bootbank_vsan_6.5.0-3.199.22695722
    • VMware_bootbank_vsanhealth_6.5.0-3.199.22695723
    • VMware_bootbank_esx-tboot_6.5.0-3.199.23084120
    • VMware_bootbank_esx-base_6.5.0-3.199.23084120
    • VMW_bootbank_xhci-xhci_1.0-3vmw.650.3.199.23084120
    PRs Fixed N/A
    Related CVE numbersN/A CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, CVE-2024-22255
      This patch updates the following issue:
      • This release resolves CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, and CVE-2024-22255. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2024-0006.

    ESXi-6.5.0-20240304001-no-tools
    Profile Name ESXi-6.5.0-20240304001-no-tools
    Build For build information, see the top of the page.
    Vendor VMware by Broadcom, Inc.
    Release Date March 05, 2024
    Acceptance Level PartnerSupported
    Affected Hardware N/A
    Affected Software N/A
    Affected VIBs
    • VMware_bootbank_vsan_6.5.0-3.199.22695722
    • VMware_bootbank_vsanhealth_6.5.0-3.199.22695723
    • VMware_bootbank_esx-tboot_6.5.0-3.199.23084120
    • VMware_bootbank_esx-base_6.5.0-3.199.23084120
    • VMW_bootbank_xhci-xhci_1.0-3vmw.650.3.199.23084120
    PRs Fixed N/A
    Related CVE numbers CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, CVE-2024-22255
      This patch updates the following issue:
      • This release resolves CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, and CVE-2024-22255. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2024-0006.

    Known Issues from Previous Releases

    To view a list of previous known issues, click here.

check-circle-line exclamation-circle-line close-line
Scroll to top icon