VMware Aria Operations 8.12.1
Article ID: 336694
Updated On:
Products
VMware Aria Suite
Issue/Introduction
This article covers the fixes made in VMware Aria Operations 8.12.1 from previous versions.
VMware Aria Operations 8.12.1 contains all previous fixes from VMware Aria Operations 8.12 Hot Fix 1, plus addresses the following issues:
- Scoreboard widget is throwing JS exception when double clicking on sparkline.
- Analytics Forward Data Region used for the time-series data coming from the CP.
- [Log Integration] [Certificate] Auto-accept of imported certificate doesn't work properly for the VMware Aria Operations for Logs Cloud Account.
- The cluster costs are incorrect incase of hybrid clouds during the crossover of billing cycle.
- Absent comma in the scripts.python.cprcReEncryptPassword.main().
- Empty widgets on Multi-Cloud Overview page.
- Reconfiguring HA proxy even if there is no certificate change.
- In hybrid clouds, the cluster costs when added up do not match with the billing expenses.
- [CP] - /var/log/auth.log rotation needs to happen more frequently.
- suite-api catalina.out log path is incorrect.
- Handle statementCycle param in Statement Bill v3 API correctly as MM/YYYY and not M/YYYY for single digit months (Jan to Sept).
- [GCP MP] As per Platform Safegaurd, one property is changing every collection cycle.
- Billing collection is stopped in case API token for GCVE adapter is from ORG Owner.
- [VMware Aria Operations Cloud] [CAS MP] Two vRA OOTB dashboard data are impacted, with missing widget information, after upgrading VMware Aria Operations Cloud.
- Upgrade Summary report is not generated.
- VMware Aria Operations for Logs instance/cloud account creation is failing in VMware Aria Operations onPrem, with FIPS on option.
- [NSX-T MP] Duplicate Metric Definition in describe.xml.
- [Rest API support] Add Workload automation network settings to policy import/export.
The following CVEs have been resolved as of VMware Aria Operations 8.12.1:
| Component Name | CVE |
|---|---|
| containerd | CVE-2023-24540 |
| CVE-2023-29400 | |
| CVE-2023-24539 | |
| CVE-2023-24534 | |
| CVE-2023-24536 | |
| CVE-2022-41720 | |
| CVE-2022-41725 | |
| CVE-2023-24537 | |
| CVE-2023-24538 | |
| CVE-2023-24532 | |
| CVE-2022-41722 | |
| CVE-2022-41724 | |
| haproxy | CVE-2023-0056 |
| CVE-2023-0836 | |
| linux | CVE-2018-19406 |
| CVE-2023-2483 | |
| CVE-2023-2248 | |
| CVE-2022-29900 | |
| CVE-2022-29901 | |
| CVE-2023-2124 | |
| CVE-2023-32233 | |
| CVE-2023-1859 | |
| CVE-2023-31436 | |
| CVE-2023-2269 | |
| CVE-2023-2177 | |
| CVE-2023-1989 | |
| CVE-2023-30456 | |
| CVE-2023-1611 | |
| CVE-2023-1076 | |
| CVE-2022-4269 | |
| net-snmp | CVE-2022-44793 |
| CVE-2022-44792 | |
| net.minidev:json-smart | CVE-2021-27568 |
| org.codehaus.jettison:jettison | CVE-2023-1436 |
| org.hsqldb:hsqldb | CVE-2022-41853 |
| org.springframework:spring-core | CVE-2023-20861 |
| org.springframework.security:spring-security-core | CVE-2023-20862 |
| org.springframework.security:spring-security-web | CVE-2023-20862 |
| rpm-libs | CVE-2021-20271 |
| vim | CVE-2022-2571 |
| CVE-2022-2923 | |
| CVE-2022-2862 | |
| CVE-2022-3234 | |
| CVE-2022-3297 | |
| CVE-2022-2286 | |
| CVE-2022-2345 | |
| CVE-2022-2581 | |
| CVE-2022-2522 | |
| CVE-2022-2816 | |
| CVE-2022-2288 | |
| CVE-2022-2580 | |
| CVE-2022-2817 | |
| CVE-2022-2980 | |
| CVE-2022-2264 | |
| CVE-2022-2285 | |
| CVE-2022-2284 | |
| CVE-2022-2257 | |
| CVE-2022-2287 | |
| CVE-2022-3037 | |
| CVE-2022-2344 | |
| CVE-2022-2849 | |
| CVE-2022-3134 | |
| CVE-2022-2343 | |
| CVE-2022-2874 | |
| CVE-2022-4293 | |
| CVE-2022-3099 | |
| CVE-2022-4141 | |
| CVE-2022-3235 | |
| CVE-2022-3256 | |
| CVE-2022-3491 | |
| CVE-2022-3278 | |
| CVE-2022-3352 | |
| CVE-2022-2289 | |
| CVE-2022-3016 | |
| CVE-2022-2845 | |
| CVE-2022-3153 | |
| CVE-2022-2982 | |
| CVE-2022-2598 | |
| CVE-2022-3705 | |
| CVE-2022-3296 | |
| CVE-2022-2889 | |
| CVE-2023-2610 | |
| CVE-2023-2426 | |
| CVE-2023-1264 | |
| CVE-2023-1175 | |
| CVE-2023-1170 | |
| CVE-2022-2304 | |
| webkit | CVE-2023-32409 |
Environment
VMware Aria Operations 8.12.x
Resolution
VMware Aria Operations 8.12 can be applied to any 8.6.x - 8.10.x environment.
It is recommended to take snapshots following How to take a Snapshot of VMware Aria Operations before upgrading.
- Download the VMware Aria Operations 8.12 upgrade PAK file as per Aria Operations 8.12.1 binaries
- Log in to the master node VMware Aria Operations Administrator interface of your cluster at https://master-node-FQDN-or-IP-address/admin.
- Click Software Update in the left panel.
- Click Install a Software Update in the main panel.
- Follow the steps in the wizard to locate and install your PAK file.
- Install the product update PAK file.
Wait for the software update to complete. When it does, the Administrator interface logs you out. - Log back into the master node Administrator interface.
The main Cluster Status page appears and cluster goes online automatically. The status page also displays the Bring Online button, but do not click it.
- Clear the browser caches and if the browser page does not refresh automatically, refresh the page.
The cluster status changes to Going Online. When the cluster status changes to Online, the upgrade is complete.
Note: If a cluster fails and the status changes to offline during the installation process of a PAK file update then some nodes become unavailable. To fix this, you can access the Administrator interface and manually take the cluster offline and click Finish Installation to continue the installation process.
- Click Software Update to check that the update is done.
A message indicating that the update completed successfully appears in the main pane.
Additional Information
Once the update is complete, delete the snapshots you made before the software update.
Feedback
Yes
No
Powered by
