Release Date: 12 July, 2022
What's in the Release Notes
The release notes cover the following topics:
Build Details
| Download Filename: | ESXi670-202207001.zip |
| Build: | 19997733 |
| Download Size: | 329.5 MB |
| md5sum: | cc8f78032ef26471672300094d8aed64 |
| sha256checksum: | c554000861102c9ad61a9caee45b6a563a9e31d85ad792141a9cf5b3ea7acfb0 |
| Host Reboot Required: | Yes |
| Virtual Machine Migration or Shutdown Required: | Yes |
Bulletins
| Bulletin ID | Category | Severity |
| ESXi670-202207401-SG | Security | Moderate |
Rollup Bulletin
This rollup bulletin contains the latest VIBs with all the fixes since the initial release of ESXi 6.7.
| Bulletin ID | Category | Severity |
| ESXi670-202207001 | Security | Moderate |
IMPORTANT: For clusters using VMware vSAN, you must first upgrade the vCenter Server system. Upgrading only the ESXi hosts is not supported.
Before an upgrade, always verify in the VMware Product Interoperability Matrix compatible upgrade paths from earlier versions of ESXi, vCenter Server and vSAN to the current version.
Image Profiles
VMware patch and update releases contain general and critical image profiles. Application of the general release image profile applies to new bug fixes.
| Image Profile Name |
| ESXi-6.7.0-20220704001-standard |
| ESXi-6.7.0-20220704001-no-tools |
For more information about the individual bulletins, see the Product Patches page and the Resolved Issues section.
Patch Download and Installation
The typical way to apply patches to ESXi hosts is by using the VMware vSphere Update Manager. For details, see the About Installing and Administering VMware vSphere Update Manager.
ESXi hosts can be updated by manually downloading the patch ZIP file from VMware Customer Connect. From the Select a Product drop-down menu, select ESXi (Embedded and Installable) and from the Select a Version drop-down menu, select 6.7.0. Install VIBs by using the esxcli software vib update command. Additionally, you can update the system by using the image profile and the esxcli software profile update command.
For more information, see the vSphere Command-Line Interface Concepts and Examples and the vSphere Upgrade Guide.
Resolved Issues
The resolved issues are grouped as follows.
ESXi670-202207401-SG| Patch Category | Security |
| Patch Severity | Moderate |
| Host Reboot Required | Yes |
| Virtual Machine Migration or Shutdown Required | Yes |
| Affected Hardware | N/A |
| Affected Software | N/A |
| VIBs Included |
|
| PRs Fixed | N/A |
| CVE numbers | N/A |
Updates esx-base, esx-update, vsan, and vsanhealth VIBs to resolve the following issues:
This release resolves CVE-2022-23816, CVE-2022-23825, CVE-2022-28693, and CVE-2022-29901. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2022-0020.
| Profile Name | ESXi-6.7.0-20220704001-standard |
| Build | For build information, see Patches Contained in this Release. |
| Vendor | VMware, Inc. |
| Release Date | July 12, 2022 |
| Acceptance Level | PartnerSupported |
| Affected Hardware | N/A |
| Affected Software | N/A |
| Affected VIBs |
|
| PRs Fixed | N/A |
| Related CVE numbers | N/A |
This release resolves CVE-2022-23816, CVE-2022-23825, CVE-2022-28693, and CVE-2022-29901. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2022-0020.
| Profile Name | ESXi-6.7.0-20220704001-no-tools |
| Build | For build information, see Patches Contained in this Release. |
| Vendor | VMware, Inc. |
| Release Date | July 12, 2022 |
| Acceptance Level | PartnerSupported |
| Affected Hardware | N/A |
| Affected Software | N/A |
| Affected VIBs |
|
| PRs Fixed | N/A |
| Related CVE numbers | N/A |
This release resolves CVE-2022-23816, CVE-2022-23825, CVE-2022-28693, and CVE-2022-29901. For more information on these vulnerabilities and their impact on VMware products, see VMSA-2022-0020.
