VMware vSphere Update Manager recalled patch process
search cancel

VMware vSphere Update Manager recalled patch process

book

Article ID: 315330

calendar_today

Updated On:

Products

VMware vCenter Server VMware vSphere ESXi

Issue/Introduction

This article provides the necessary information regarding the recall of a VMware patch when VMware vSphere Update Manager is used for patch installation and compliance.

Symptoms:
When a VMware patch is recalled from VMware vSphere Update Manager, you experience these symptoms:
  • Remediation of VMware vCenter Server inventory objects fails.
  • You see the error:

    Cannot download software packages from patch source. Check the events and the Update Manager log for download details
     
  • In the InstallationPath\VMware Update Manager\Logs\vmware-vum-server-log4cpp file, you see entries similar to:

    [<YYYY-MM-DD>T<time> 'HostUpdateDepotManager' 3512 ERROR] [vibDownloaderImpl, 418] Downloading file failed for: depotURL
    [<YYYY-MM-DD>T<time> 'HostUpdateDepotManager' 3512 WARN] [vibDownloaderImpl, 440] Failed to download 1 VIBs:
    depotURL,
    [<YYYY-MM-DD>T<time> 'HostUpdateDepotManager' 3512 ERROR] [patchDepotManager, 466] Failed to download the vibs: depotURL
    </time></time></time>


Resolution

In the event that VMware has recalled a patch and you are using VMware vSphere Update Manager for patch installation and compliance verification, these scenarios exist:

You have remediated the recalled patch

In this scenario, you have already staged and remediated the recalled patch on one or more VMware vCenter Server inventory objects.

To address this scenario:

  1. If a new patch has been released to replace the recalled patch:
    1. Log in to VMware vCenter Server using the VMware vSphere Client.
    2. Click Home > Update Manager.
    3. Click the Configuration tab.
    4. In the Settings pane, click Download Settings.
    5. Click Download Now to download the latest patch definitions.
    6. Create a new baseline to include the replacement patch.

      Note: If a replacement patch has been issued for the recalled patch, this will be included in the new patch definitions obtained in step 1. For more information, see the Knowledge Base article for the recalled patch.
       
    7. Attach the baseline to the objects remediated with the recalled patch.
    8. Stage and remediate the object(s).

      Note: Depending on the changes made between the recalled and replacement patch, some patch bulletins may report as Staged. This can occur when there is no change in the underlying VIBs for a specific patch bulletin that was released as part of the replacement patch.
  2. If a new patch has not been released to replace the recalled patch, review the Knowledge Base article for the recalled patch.

You have downloaded and staged the recalled patch, but have not remediated the patch

In this scenario, you have already staged the recalled patch on a VMware vCenter Server inventory object, but have not yet remediated the patch on the object.
 
To address this scenario:
  1. Download the latest patch definitions from VMware.

    To download the latest patch definitions from VMware vSphere Update Manager:
    1. Log in to VMware vCenter Server using the VMware vSphere Client.
    2. Click Home > Update Manager.
    3. Click the Configuration tab.
    4. In the Settings pane, click Download Settings.
    5. Click Download Now to download the latest patch definitions.
  2. If you are using a custom baseline that includes the recalled patch, detach the baseline.
  3. Create a new baseline using the latest patch definitions that were downloaded in Step 1.

    Note: If a replacement patch has been issued for the recalled patch, this will be included in the new patch definitions obtained in step 1. For more information, see the Knowledge Base article for the recalled patch.
     
  4. Attach the baseline.
  5. Stage and remediate the objects attached to the new baseline.

You have downloaded the recalled patch definition, but have not staged or remediated the patch

In this scenario, VMware vSphere Update Manager has downloaded the patch definitions before the a patch was recalled but has not yet downloaded the patch contents from the VMware Software Depot. If you have already staged or remediated this patch on any VMware vCenter Server inventory object, see the scenario You have remediated the recalled patch.

To address this scenario:

  1. Download the latest patch definitions from VMware.

    To download the latest patch definitions from VMware vSphere Update Manager:
    1. Log in to VMware vCenter Server using the VMware vSphere Client.
    2. Click Home > Update Manager.
    3. Click the Configuration tab.
    4. In the Settings pane, click Download Settings.
    5. Click Download Now to download the latest patch definitions.
  2. If you are using a custom baseline that includes the recalled patch, detach the baseline.
  3. Create a new baseline using the latest patch definitions that were downloaded in Step 1.
  4. Attach the baseline.
  5. Stage and remediate the objects attached to the new baseline.

    Note: If you attempt to remediate an object with a baseline that includes the recalled patch, you encounter the error:

    Cannot download software packages from patch source. Check the events and the Update Manager log for download details

Your patch definitions were downloaded prior to the release of the recalled patch

In this scenario, the patch definitions for VMware vSphere Update Manager were downloaded prior to the initial release of the patch that has been recalled.

To address this scenario:

  1. Download the latest patch definitions from VMware.

    To download the latest patch definitions from VMware vSphere Update Manager:
    1. Log in to VMware vCenter Server using the VMware vSphere Client.
    2. Click Home > Update Manager.
    3. Click the Configuration tab.
    4. In the Settings pane, click Download Settings.
    5. Click Download Now to download the latest patch definitions.
  2. Create a new baseline using the latest patch definitions that were downloaded in Step 1.

    Note: If a replacement patch has been issued for the recalled patch, this is included in the new patch definitions obtained in step 1. For more information, see the Knowledge Base article for the recalled patch.
     
  3. Attach the baseline.
  4. Stage and remediate the objects attached to the new baseline.

 



Additional Information

Cannot download software packages from patch source. Check the events and the Update Manager log for download details" error when remediating the ESXi host using VMware Update Manager (64995)

Powered by Wolken Software