Release Date: 12 July, 2022

What's in the Release Notes

The release notes cover the following topics:

Build Details

Download Filename: ESXi670-202207001.zip
Build: 19997733
Download Size: 329.5 MB
md5sum: cc8f78032ef26471672300094d8aed64
sha256checksum: c554000861102c9ad61a9caee45b6a563a9e31d85ad792141a9cf5b3ea7acfb0
Host Reboot Required: Yes
Virtual Machine Migration or Shutdown Required: Yes

Bulletins

Bulletin ID Category Severity
ESXi670-202207401-SG Security Moderate

Rollup Bulletin

This rollup bulletin contains the latest VIBs with all the fixes since the initial release of ESXi 6.7.

Bulletin ID Category Severity
ESXi670-202207001 Security Moderate

IMPORTANT: For clusters using VMware vSAN, you must first upgrade the vCenter Server system. Upgrading only the ESXi hosts is not supported.
Before an upgrade, always verify in the VMware Product Interoperability Matrix compatible upgrade paths from earlier versions of ESXi, vCenter Server and vSAN to the current version. 

Image Profiles

VMware patch and update releases contain general and critical image profiles. Application of the general release image profile applies to new bug fixes.

Image Profile Name
ESXi-6.7.0-20220704001-standard
ESXi-6.7.0-20220704001-no-tools

For more information about the individual bulletins, see the Product Patches page and the Resolved Issues section.

Patch Download and Installation

The typical way to apply patches to ESXi hosts is by using the VMware vSphere Update Manager. For details, see the About Installing and Administering VMware vSphere Update Manager.
ESXi hosts can be updated by manually downloading the patch ZIP file from VMware Customer Connect. From the Select a Product drop-down menu, select ESXi (Embedded and Installable) and from the Select a Version drop-down menu, select 6.7.0. Install VIBs by using the esxcli software vib update command. Additionally, you can update the system by using the image profile and the esxcli software profile update command.

For more information, see the vSphere Command-Line Interface Concepts and Examples and the vSphere Upgrade Guide.

 

Resolved Issues

The resolved issues are grouped as follows.

ESXi670-202207401-SG
Patch Category Security
Patch Severity Moderate
Host Reboot Required Yes
Virtual Machine Migration or Shutdown Required Yes
Affected Hardware N/A
Affected Software N/A
VIBs Included
  • VMware_bootbank_esx-update_6.7.0-3.178.19997733
  • VMware_bootbank_esx-base_6.7.0-3.178.19997733
  • VMware_bootbank_vsanhealth_6.7.0-3.178.19819813
  • VMware_bootbank_vsan_6.7.0-3.178.19819811
PRs Fixed  N/A
CVE numbers N/A

Updates esx-base, esx-update, vsan, and vsanhealth VIBs to resolve the following issues:

  • This release resolves CVE-2022-23816, CVE-2022-23825, CVE-2022-28693, and CVE-2022-29901. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2022-0020.

ESXi-6.7.0-20220704001-standard
Profile Name ESXi-6.7.0-20220704001-standard
Build For build information, see Patches Contained in this Release.
Vendor VMware, Inc.
Release Date July 12, 2022
Acceptance Level PartnerSupported
Affected Hardware N/A
Affected Software N/A
Affected VIBs
  • VMware_bootbank_esx-update_6.7.0-3.178.19997733
  • VMware_bootbank_esx-base_6.7.0-3.178.19997733
  • VMware_bootbank_vsanhealth_6.7.0-3.178.19819813
  • VMware_bootbank_vsan_6.7.0-3.178.19819811
PRs Fixed N/A
Related CVE numbers N/A
  • This release resolves CVE-2022-23816, CVE-2022-23825, CVE-2022-28693, and CVE-2022-29901. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2022-0020.

ESXi-6.7.0-20220704001-no-tools
Profile Name ESXi-6.7.0-20220704001-no-tools
Build For build information, see Patches Contained in this Release.
Vendor VMware, Inc.
Release Date July 12, 2022
Acceptance Level PartnerSupported
Affected Hardware N/A
Affected Software N/A
Affected VIBs
  • VMware_bootbank_esx-update_6.7.0-3.178.19997733
  • VMware_bootbank_esx-base_6.7.0-3.178.19997733
  • VMware_bootbank_vsanhealth_6.7.0-3.178.19819813
  • VMware_bootbank_vsan_6.7.0-3.178.19819811
PRs Fixed N/A
Related CVE numbers N/A
  • This release resolves CVE-2022-23816, CVE-2022-23825, CVE-2022-28693, and CVE-2022-29901. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2022-0020.

check-circle-line exclamation-circle-line close-line
Scroll to top icon