Applying individual product updates to VMware Cloud Foundation environments using Async Patch Tool (AP Tool)
search cancel

Applying individual product updates to VMware Cloud Foundation environments using Async Patch Tool (AP Tool)

book

Article ID: 344935

calendar_today

Updated On:

Products

VMware Cloud Foundation

Issue/Introduction

This article lists individual product updates, also known as async patches, that can be applied to VCF environments with the help of Async Patch Tool. Async Patch Tool is a CLI utility which helps automate patch steps and enables users to apply these patches using SDDC Manager's in-product LCM automation, without impacting future upgrades.

This article outlines two key details
  1. VCF releases versions can support a given async patch
  2. VCF releases that patched environments can upgrade the full SDDC stack to, without the risk of downgrading critical fixes applied via async patches or propagating stale configurations
Refer to the Async Patch Tool documentation for detailed instructions on how to:
  • Download Async Patch Tool.
  • Apply an async patch.
  • Upgrade an async patched version of VMware Cloud Foundation.

For more information about known issues, see the Async Patch Tool Release Notes.


Symptoms:
  • A VMware Cloud Foundation (VCF) environment needs a critical security patch or bug fix, but you are not ready to upgrade the full SDDC stack to a new VCF version which includes this fix.
  • After applying individual product patch(es) to VCF environment in the past, now you want to upgrade to new VCF version.
  • VMSA-2023-0023 Online AP Tool Remediation Steps:  KB-95284
  • VMSA-2023-0023 Offline AP Tool Remediation Steps:  KB-95287
NOTE: Prior to applying any patches, please review KB 95536 and implement the corrective action.
NOTE: For VCF on VxRail environments, prior to applying any patches complete the pre-requisites as per
KB-91830

Environment

VMware Cloud Foundation 4.2.1

VMware Cloud Foundation 4.3.x

VMware Cloud Foundation 4.4.x

VMware Cloud Foundation 4.5.x

VMware Cloud Foundation 5.0.x

VMware Cloud Foundation 5.1.x

 

Cause

Resolution

Terminology

l Product Version
The product patch you wish to apply on a VCF instance.
 
l Patch Identifier 
<Product Type>:<Product Version>
Patch details to be passed as an argument to AP Tool --patch or --download options, used to uniquely identify the correct bundle artifacts to download and/or apply.
 
l Patch Bundle Name
The name identifier of the bundle, as seen on the VMware Depot.
 
l Install Bundle Name
Will be required only when SDDC Manager is on 5.2 version.

The install bundles for the versions of NSX Manager and vCenter Server that are running in the management domain must be available in SDDC Manager 5.2 before you can create a VI workload domain. For example, if you have patched the versions of NSX Manager and/or vCenter Server in the management domain to a version higher than what is listed in the BOM, you must download the new install bundles. See Downloading Install Bundles for VMware Cloud Foundation.

l Supported VCF SKU
The type of VCF environment that the patch can be applied to. Below are 2 types of supported VCF SKUs:
1. VCF
2. VCF on VxRail
 
l Prerequisites
Any prerequisite steps that are required to be performed on the system prior to enabling the specified patch.
 
l Minimum Target VCF Release
The minimum recommended VCF release to upgrade to after applying a patch.
Example: If the minimum target VCF release is 4.5.x, then you must use a target VCF release of 4.5.0.0 or newer when enabling the future upgrade path.
Note: * If you have applied multiple async patches to your VCF environment, look up the target VCF release recommended for each one and choose the highest of those. This is the target VCF release you should upgrade to, at minimum.


List of VCF Supported Async Patches

Products

  1. NSX-T
  2. ESXi  
  3. vCenter Server
  4. VxRail
NSX-T Version

Patch Identifier

Patch Bundle Name

Install Bundle Name Supported VCF Version Supported VCF SKU Prerequisites Minimum Target VCF Release*

Notes

NSX 4.2.1.1

NSX_T_MANAGER:4.2.1.1.0-24405893

bundle-202404

bundle-202405 VCF 5.2 and above VCF,VCF on VxRail    N/A     On VCF 5.x line:
VCF 5.2.1
Please skip upgrading the BOM component if the current VCF environment has a higher version of the BOM component than what is bundled with VCF 5.2.1.
Additional Information

In VCF 5.2/5.2.1.x use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.


NSX 4.2.1.0 NSX_T_MANAGER:4.2.1.0.0-24304122 bundle-133763 bundle-133764 VCF 5.2 VCF, VCF on VxRail N/A On VCF 5.x line: VCF 5.2.1
In VCF 5.2 use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.
NSX 4.2.0.2 NSX_T_MANAGER:4.2.0.2.0-24278654 bundle-132480 bundle-132488 VCF 5.2 VCF, VCF on VxRail SDDC Manager 5.2.0 On VCF 5.x line: VCF 5.2.1
In VCF 5.2 use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.
NSX 4.2.0.1 NSX_T_MANAGER:4.2.0.1.0-24210154 bundle-129887 bundle-129895 VCF 5.2.0 VCF, VCF on VxRail SDDC Manager 5.2.0 On VCF 5.x line: VCF 5.2.1 In VCF 5.2 use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.
NSX 4.1.2.5 NSX_T_MANAGER:4.1.2.5.0-24150840 bundle-127076 bundle-127193 VCF 5.0, VCF 5.0.0.1, VCF 5.1, VCF 5.1.1 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.2.1
Please refer to NSX 4.1.2.5
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 5.0.0.0, VCF 5.1.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
        
NSX 4.1.2.4 NSX_T_MANAGER:4.1.2.4.0-23786733 bundle-115798 bundle-117612 VCF 5.0, VCF 5.0.0.1, VCF 5.1, VCF 5.1.1 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.2
Please refer to NSX 4.1.2.4
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 5.0.0.0, VCF 5.1.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
NSX-T 3.2.4.1  

NSX_T_MANAGER:3.2.4.1.0- 24309028

 

 

 

bundle-133944   

 

 

 

 

VCF 4.5.x

 

 

 

VCF, VCF on VxRail

 

 

 

 

On VCF 4.x line: No upgrade path at present.

On VCF 5.x line: VCF 5.2

 

Please refer to NSX-T 3.2.4.1
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager

 

NSX-T 3.2.4 NSX_T_MANAGER:3.2.4.0.0-23653566 bundle-114361 bundle-117611 VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.2
Please refer to NSX-T 3.2.4
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
NSX 4.1.2.3 NSX_T_MANAGER:4.1.2.3.0-23382408 bundle-110986 bundle-111780 VCF 5.0, VCF 5.0.0.1, VCF 5.1 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.1.1 Please refer to NSX 4.1.2.3
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 5.0.0.0, VCF 5.1.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
NSX-T 3.2.3.2 NSX_T_MANAGER:3.2.3.2.0-23214453 bundle-107668 bundle-117606 VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.1.1
Please refer to NSX-T 3.2.3.2
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services On 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
NSX-T 4.1.2.1 NSX_T_MANAGER:4.1.2.1.0-22667789
 
bundle-99892 bundle-99542 VCF 5.0, VCF 5.0.0.1 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.1 Please refer to NSX-T 4.1.2.1
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On 5.0.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
NSX-T 4.1.2 Async Patching Support for this NSX version has been removed due to a critical bug on NSX 4.1.2 as described in KB 95306
NSX-T 4.1.1 NSX_T_MANAGER:4.1.1.0.0-22224312 bundle-88920 bundle-88925 VCF 5.0, VCF 5.0.0.1 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.1 Please refer to NSX-T 4.1.1
Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On 5.0.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
NSX-T 3.2.3.1 NSX_T_MANAGER:3.2.3.1.0-22104592 bundle-86908 bundle-87319 VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: VCF 4.5.2.0
On VCF 5.x line: VCF 5.1
Please refer to NSX-T 3.2.3.1 Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
NSX-T 3.2.3 NSX_T_MANAGER:3.2.3.0.0-21703624

bundle-79596

bundle-117605 VCF 4.5.x VCF, VCF on VxRail

 

On VCF 4.x line: VCF 4.5.2.0
On VCF 5.x line: VCF 5.1
Please refer to NSX-T 3.2.3 Release Notes to understand patch details and Known Issues.
NSX-T 3.2.2.1 NSX_T_MANAGER:3.2.2.1.0-21487560

bundle-74617

bundle-73786 VCF 4.5 VCF, VCF on VxRail

 

VCF 4.5.1 Please refer to NSX-T 3.2.2.1.0 Release Notes to understand patch details and known issues.
NSX-T 3.2.2.0.1 NSX_T_MANAGER:3.2.2.0.1-20959512

bundle-68961

bundle-117604 VCF 4.5 VCF, VCF on VxRail

 

VCF 4.5.1

Please refer to KB 90468 to understand patch details and Known Issues.

NSX-T 3.2.2

NSX_T_MANAGER:3.2.2.0.0-20737185

bundle-64956

bundle-117599 VCF 4.5 VCF, VCF on VxRail

 

VCF 4.5.1 Please refer to NSX-T 3.2.2 Release Notes to understand patch details and Known Issues.
NSX-T 3.1.3.8 NSX_T_MANAGER:3.1.3.8.0-20532384

bundle-63129

N/A VCF 4.3.1.1, VCF 4.4.x VCF, VCF on VxRail

 

VCF 4.5 Please refer to NSX-T 3.1.3.8 Release Notes to understand patch details and Known Issues.
Enabling NSX-T 3.1.3.8 patch will also update below SDDC Manager services
On VCF 4.4.1.1
- LCM
- Operations Manager
- Domain Manager
- Common Services
On VCF 4.4.0.0
- LCM
- Operations Manager
- Domain Manager
- Common Services
On VCF 4.3.1.1
- LCM
NSX-T 3.1.3.7.4 NSX_T_MANAGER:3.1.3.7.4-19762317

bundle-57417

N/A VCF 4.2.1, VCF 4.3.1.1, VCF 4.4 VCF, VCF on VxRail   VCF 4.4.1 or later Please refer to NSX-T 3.1.3.7.4 Release Notes to understand patch details and Known Issues.
Upgrading Nsx-T may result in this precheck error: 87975
Contact VMware support for VCF workaround if this occurs.

 

ESXi Version Patch Identifier Patch Bundle Name Supported VCF Version Supported VCF SKU Prerequisites Minimum Target VCF Release*

Notes

ESXi 8.0U3c ESX_HOST:8.0.3-24414501 bundle-203210 VCF 5.2 and above  VCF VC 8.0 U3 On VCF 5.x line:
VCF 5.2.1
Please skip upgrading the BOM component if the current VCF environment has a higher version of the BOM component than what is bundled with VCF 5.2.1.
Additional Information

In VCF 5.2/5.2.1.x use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.

ESXi 7.0U3r ESX_HOST:7.0.3-24411414 bundle-202807 VCF 4.5.2 VCF VC 7.0Ur On VCF 4.x line: No upgrade path at present. 
On VCF 5.x line:
VCF 5.2.1
Please skip upgrading the BOM component if the current VCF environment has a higher version of the BOM component than what is bundled with VCF 5.2.1.
Additional Information

Enabling ESXi 7.0 U3r patch will also update below SDDC Manager services
On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0,4.5.1.0 and 4.5.2.0
- Common Services
- LCM
- Operations Manager
- Domain Manager
- UI Services

ESXi 80U3b ESX_HOST:8.0.3-24280767 bundle-132709 VCF 5.2 VCF VC 8.0 U3b On VCF 5.x line: VCF 5.2.1

In VCF 5.2 use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.

ESXi 8.0 U2c ESX_HOST:8.0.2-23825572 bundle-116241 VCF 5.1,
VCF 5.1.1
VCF VC 8.0 U2c On VCF 5.x line: VCF 5.2

Please refer to ESXi 8.0 U2c Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 5.1.0.0
- Common Services
- LCM
- Operations Manager
- Domain Manager

ESXi 7.0 U3q ESX_HOST:7.0.3-23794027 bundle-115974 VCF 4.4.x, VCF 4.5.x VCF VC 7.0 U3q On VCF 4.x line: No upgrade path at present.

On VCF 5.x line: VCF 5.2

Please refer to ESXi 7.0U3q Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0, and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager

ESXi 8.0 U1d ESX_HOST:8.0.1-23299997 bundle-110231 VCF 5.0, VCF 5.0.0.1 VCF VC 8.0 U1d On VCF 5.x line: VCF 5.1 Please refer to ESXi 8.0 U1d Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services On 5.0.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
ESXi 7.0 U3p ESX_HOST:7.0.3-23307199 bundle-109691 VCF 4.4.x, VCF 4.5.x VCF VC 7.0 U3p On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.1.1
Please refer to ESXi 7.0 U3p Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services On 4.4.0.0, 4.4.1.1, 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
ESXi 8.0 U2b ESX_HOST:8.0.2-23305546 bundle-109793 VCF 5.1 VCF VC 8.0 U2b On VCF 5.x line: VCF 5.1.1 Please refer to ESXi 8.0 U2b Release Notes to understand patch details and known Issues.
ESXi 7.0 U3o ESX_HOST:7.0.3-22348816 bundle-93973 VCF 4.4.x, VCF 4.5.x VCF VC 7.0 U3o On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.1
Please refer to ESXi 7.0 U3o Release Notes to understand patch details and known Issues.
Enabling this patch will also update below SDDC Manager services.
On VCF 4.3.1.1, 4.4.0.0, 4.4.1.1, 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
ESXi 8.0 U1c ESX_HOST:8.0.1-22088125 bundle-86757 VCF 5.0 VCF VC 8.0 U1c On VCF 5.x line: VCF 5.1 Please refer to ESXi 8.0 U1c Release Notes to understand patch details and known issues.
ESXi 7.0 U3n ESX_HOST:7.0.3-21930508 bundle-82836 VCF 4.4.x, VCF 4.5.x VCF VC 7.0 U3m On VCF 4.x line: VCF 4.5.2.0
On VCF 5.x line: VCF 5.1
Please refer to ESXi 7.0 U3n Release Notes to understand patch details and Known Issues.
Enabling ESXi 7.0U3n patch will also update below SDDC Manager services. On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0 and 4.5.1.0
- Common Services
- LCM
- Operations Manager
- Domain Manager

ESXi 7.0 U3m

ESX_HOST:7.0.3-21686933

bundle-78085

VCF 4.3.1.1,
VCF 4.4.x, VCF 4.5.x
VCF VC 7.0 U3l On VCF 4.x line: VCF 4.5.2.0.
On VCF 5.x line: VCF 5.0
Please refer to ESXi 7.0 U3m Release Notes to understand patch details and Known Issues.
Enabling ESXi 7.0U3m patch will also update below SDDC Manager services. On VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager
ESXi 7.0 U3l ESX_HOST:7.0.3-21424296

bundle-72874

VCF 4.3.1.1,
VCF 4.4.x,
VCF 4.5
VCF VC 7.0 U3l On VCF 4.x line: VCF 4.5.1.0
On VCF 5.x line: VCF 5.0
Please refer to ESXi 7.0 U3l Release Notes to understand patch details and known issues.
Enabling ESXi 7.0U3l patch will also update below SDDC Manager services. On VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager
ESXi 7.0 U3k ESX_HOST:7.0.3-21313628

bundle-70817

VCF 4.3.1.1,
VCF 4.4.x,
VCF 4.5
VCF VC 7.0 U3j VCF 4.5.1 Please refer to ESXi 7.0 U3k Release Notes to understand patch details and known issues.
Enabling ESXi 7.0U3k patch will also update below SDDC Manager services. On VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager
ESXi 7.0 U3j ESX_HOST:7.0.3-21053776 bundle-69531 VCF 4.3.1.1,
VCF 4.4.x,
VCF 4.5
VCF

VC 7.0 U3j

VCF 4.5.1

Please refer to ESXi 7.0 U3j Release Notes to understand patch details and Known Issues.
Enabling ESXi 7.0U3j patch will also update below SDDC Manager services.
On VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager

ESXi 7.0 U3i ESX_HOST:7.0.3-20842708

bundle-66405

VCF 4.3.1.1,
VCF 4.4.x,
VCF 4.5
VCF VC 7.0 U3i VCF 4.5.1
 
Please refer to ESXi 7.0 U3i Release Notes to understand patch details and known issues.
Enabling ESXi 7.0 U3i patch will also update below SDDC Manager services
On VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager
ESXi 7.0 U3g ESX_HOST:7.0.3-20328353

bundle-60929

VCF 4.3.1.1,
VCF 4.4.x
VCF VC 7.0 U3g VCF 4.5 Please refer to ESXi 7.0 U3g Release Notes to understand patch details and Known Issues.
Enabling ESXi 7.0U3g patch will also update below SDDC Manager services
On VCF 4.4
- LCM
- Operations Manager
- Domain Manager
On VCF 4.3.1.1
- LCM
ESXi 7.0 U3f

ESX_HOST:7.0.3-20036589

bundle-58889

VCF 4.3.1.1,
VCF 4.4.x
VCF VC 7.0 U3f or
VC 7.0 U3g
VCF 4.5 Please refer to ESXi 7.0 U3f Release Notes to understand patch details and Known Issues.
Enabling  ESXi 7.0U3f patch will also update below SDDC Manager services
On VCF 4.4
- LCM
- Operations Manager
- Domain Manager
On VCF 4.3.1.1
- LCM
Esxi 7.0U2e ESX_HOST:7.0.2-19290878

bundle-56553

VCF 4.3.1.1 VCF

 

VCF 4.4.1 or later Please refer to Esxi 7.0U2e Release Notes to understand patch details and Known Issues.
Esxi 7.0U1e ESX_HOST:7.0.1-19324898

bundle-55488

VCF 4.2.1 VCF   VCF 4.4.1 or later Please refer to Esxi 7.0U1e Release Notes to understand patch details and Known Issues.

 

vCenter Version

Patch Identifier

Patch Bundle Name

Install Bundle Name Supported VCF Version Supported VCF SKU Prerequisites Minimum Target VCF Release*

Notes

vCenter 8.0 U3d

VCENTER:8.0.3.00400-24322831

bundle-200108

bundle-200109

VCF 5.x

VCF, VCF on VxRail

NA

On VCF 5.x line:
VCF 5.2.1
Please skip upgrading the BOM component if the current VCF environment has a higher version of the BOM component than what is bundled with VCF 5.2.1.
Additional Information

1. In VCF 5.2/5.2.1 use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool. For VCF 5.0, VCF 5.0.0.1, VCF 5.1 & VCF 5.1.1 follow the Patching the Management and Workload Domains

2. Please ignore the compatibility validation warning while planning this patch in SDDC Manager, this is a known issue and would be fixed shortly.

vCenter 8.0 U3c

VCENTER:8.0.3.00100-24091160

bundle-133765

bundle-133766

VCF 5.x

VCF, VCF on VxRail

N/A

On VCF 5.x line:
VCF 5.2.1
Please skip upgrading the BOM component if the current VCF environment has a higher version of the BOM component than what is bundled with VCF 5.2.1.
Additional Information

In VCF 5.2 use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.
 For VCF 5.0, VCF 5.0.0.1, VCF 5.1 & VCF 5.1.1 follow the Patching the Management and Workload Domains 

vCenter 8.0 U3b

VCENTER:8.0.3.00200-24262322

bundle-131838

bundle-131843

VCF 5.x

VCF, VCF on VxRail N/A On VCF 5.x line:
VCF 5.2.1
Please skip upgrading the BOM component if the current VCF environment has a higher version of the BOM component than what is bundled with VCF 5.2.1.
Additional Information

For VCF 5.2 use in product Flexible BOM to upgrade to this patch, not supported via Async Patch Tool.


For VCF 5.0, VCF 5.0.0.1, VCF 5.1 & VCF 5.1.1 follow the KB377430.

vCenter  8.0 U2e

VCENTER:8.0.2.00500-24321653

bundle-200130

bundle-200107  VCF 5.1, VCF 5.1.1 VCF, VCF on VxRail   On VCF 5.x line:
VCF 5.2.1
Please skip upgrading the BOM component if the current VCF environment has a higher version of the BOM component than what is bundled with VCF 5.2.1.
Additional Information

1. Please refer to VC 8.0 U2e Release notes Link to understand patch details and known issues.

2. Please ignore the compatibility validation warning while planning this patch in SDDC Manager, this is a known issue and would be fixed shortly.

vCenter 8.0 U2d

VCENTER:8.0.2.00400-23929136

bundle-117922

bundle-121485 VCF 5.1, VCF 5.1.1 VCF, VCF on VxRail NA On VCF 5.x line: VCF 5.2

Please refer to VC 8.0 U2d Release notes Link to understand patch details and known issues.

vCenter 8.0 U1e

VCENTER:8.0.1.00500-24005165

bundle-119382

bundle-121486 VCF 5.0, VCF 5.0.0.1 VCF, VCF on VxRail NA On VCF 5.x line: VCF 5.2

Please refer to VC 8.0 U1e Release notes Link to understand patch details and known issues.

Enabling this patch will also update below SDDC Manager services. 
On VCF 5.0.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager

vCenter 7.0 U3t

VCENTER:7.0.3.02200-24322018

bundle-200119

bundle-200117 VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail NA

On VCF 5.x line: VCF 5.2.1 - Upgrade to vCenter 8.0 U3d (instead of vCenter 8.0 U3c which is packaged with VCF 5.2.1) to address the CVEs disclosed on VMSA-2024-0019.2


On VCF 4.x line:
No upgrade path at present.

1.Please refer to VC 7.0 U3t Release notes Link to understand patch details and known issues.

2.Please ignore the compatibility validation warning while planning this patch in SDDC Manager, this is a known issue and would be fixed shortly 


3. Enabling VC 7.0 U3t patch will also update below SDDC Manager services
On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0,4.5.1.0 and 4.5.2.0
- Common Services
- LCM
- Operations Manager
- Domain Manager
- UI Services

Important KB regarding the vCenter Server patching :- KB 369485

vCenter 7.0 U3s

VCENTER:7.0.3.02100-24201990

bundle-129266

bundle-131092 VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail NA

On VCF 5.x line: VCF 5.2.1 - Upgrade to vCenter 8.0 U3d (instead of vCenter 8.0 U3c which is packaged with VCF 5.2.1) to address the CVEs disclosed on VMSA-2024-0019.2


On VCF 4.x line:
No upgrade path at present.       

Please refer to VC 7.0 U3s Release notes Link to understand patch details and known issues.

Enabling VC 7.0 U3s patch will also update below SDDC Manager services
On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0, and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager

Important KB regarding the vCenter Server patching :- KB 369485

vCenter 7.0 U3r

VCENTER:7.0.3.02000-24026615

bundle-120545

bundle-121481 VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail NA On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.2

Please refer to VC 7.0 U3r Release notes Link to understand patch details and known issues.

Enabling VC 7.0 U3r patch will also update below SDDC Manager services
On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0, and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager

Important KB regarding the vCenter Server patching :- KB 369485

VC 7.0 U3q

VCENTER:7.0.3.01900-23788036

bundle-115973

bundle-117476 VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: No upgrade path at present.

On VCF 5.x line: VCF 5.2

Please refer to VC 7.0U3q Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0, and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager

Important KB regarding the vCenter Server patching :- KB 369485

VC 8.0 U2c VCENTER:8.0.2.00300-23504390 bundle-112197 bundle-117484 VCF 5.1, VCF 5.1.1 VCF, VCF on VxRail  

On VCF 5.x line: VCF 5.2

Please refer to VC 8.0 U2c Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 5.1.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 8.0 U2b VCENTER:8.0.2.00200-23319993 bundle-109739 bundle-111782 VCF 5.1 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.1.1 Please refer to VC 8.0 U2b Release Notes to understand patch details and known Issues
VC 7.0 U3p VCENTER:7.0.3.01800-22837322 bundle-102132 bundle-117476 VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: No upgrade path at present.
On VCF 5.x line:
VCF 5.1.1
Please refer to VC 7.0 U3p Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 4.4.0.0, 4.4.1.1, 4.5.0.0, and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 8.0 U1d 
 
VCENTER:8.0.1.00400-22368047 bundle-96913 bundle-94354 VCF 5.0, VCF 5.0.0.1 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.1 Please refer to VC 8.0 U1d Release Notes to understand patch details and known Issues. Enabling this patch will also update below SDDC Manager services. On VCF 5.0.0.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 7.0 U3o VCENTER:7.0.3.01700-22357613 bundle-93744 bundle-94716 VCF 4.3.1.1, VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.1
We recommend using VC 7.0 U3p because of the issue described in KB 95610.
Please refer to VC 7.0 U3o Release Notes to understand patch details and known issues.
Refer to KB 95610 before applying vCenter 7.0u3o for issue and workaround or Contact GSS for additional support
Enabling VC 7.0 U3o patch will also update below SDDC Manager services on VCF 4.3.1.1, 4.4.0.0, 4.4.1.1, 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 7.0 U3n VCENTER:7.0.3.01600-21958406 bundle-87059 bundle-117475 VCF 4.3.1.1, VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.1
Please refer to VC 7.0 U3n Release Notes to understand patch details and known issues.
Enabling VC 7.0 U3n patch will also update below SDDC Manager services on VCF 4.3.1.1, 4.4.0.0, 4.4.1.1, 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 8.0 U1c VCENTER:8.0.1.00300-22088981 bundle-86225 bundle-117479 VCF 5.0 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.1 Please refer to VC 8.0 U1c Release Notes to understand patch details and known issues.
VC 8.0 U1b VCENTER:8.0.1.00200-21860503 bundle-81347 bundle-117486 VCF 5.0 VCF, VCF on VxRail   On VCF 5.x line: VCF 5.1 Please refer to VC 8.0 U1b Release Notes to understand patch details and known issues.
VC 7.0 U3m VCENTER:7.0.3.01500-21784236 bundle-81248 bundle-81147 VCF 4.3.1.1, VCF 4.4.x, VCF 4.5.x VCF, VCF on VxRail   On VCF 4.x line: VCF 4.5.2.0
On VCF 5.x line: VCF 5.1
Please refer to VC 7.0 U3m Release Notes to understand patch details and known issues.
Enabling VC 7.0U3m patch will also update below SDDC Manager services on VCF 4.3.1.1, 4.4.0.0, 4.4.1.1, 4.5.0.0 and 4.5.1.0:
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 7.0 U3l VCENTER:7.0.3.01400-21477706

bundle-73797

bundle-73788 VCF 4.3.1.1, VCF 4.4.x, VCF 4.5 VCF, VCF on VxRail

 

VCF 4.5.1 Please refer to VC 7.0 U3l Release Notes to understand patch details and known issues.
Enabling VC 7.0U3l patch will also update below SDDC Manager services on VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 7.0 U3j VCENTER:7.0.3.01200-20990077

bundle-67932

bundle-117472 VCF 4.3.1.1, VCF 4.4.x, VCF 4.5 VCF, VCF on VxRail

 

VCF 4.5.1 Please refer to VC 7.0 U3j Release Notes to understand patch details and known issues.
Enabling VC 7.0 U3j patch will also update below SDDC Manager services
on VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 7.0 U3i VCENTER:7.0.3.01100-20845200

bundle-66401

bundle-68553 VCF 4.3.1.1, VCF 4.4.x, VCF 4.5 VCF, VCF on VxRail

 

VCF 4.5.1 Please refer to VC 7.0 U3i Release notes to understand patch details and known issues.
Enabling VC 7.0 U3i patch will also update below SDDC Manager services
on VCF 4.3.1.1, 4.4.0.0 and 4.4.1.1
- Common Services
- LCM
- Operations Manager
- Domain Manager
VC 7.0 U3h VCENTER:7.0.3.01000-20395099

bundle-61453

N/A VCF 4.3.1.1, VCF 4.4.x VCF, VCF on VxRail

 

VCF 4.5 Please refer to VC 7.0 U3h Release Notes to understand patch details and Known Issues.
Enabling VC 7.0 U3h patch will also update below SDDC Manager services
on VCF 4.4
- LCM
- Operations Manager
- Domain Manager
on VCF 4.3.1.1
- LCM

VC 7.0 U3g

VCENTER:7.0.3.00800-20150588

bundle-59284

N/A

VCF 4.3.1.1, VCF 4.4.x

VCF, VCF on VxRail

 

VCF 4.5

Please refer to VC 7.0 U3g Release Notes to understand patch details and Known Issues.

Enabling VC 7.0 U3g patch will also update below SDDC Manager services
on VCF 4.4
- LCM
- Operations Manager
- Domain Manager
on VCF 4.3.1.1
- LCM

VC 7.0 U3f VCENTER:7.0.3.00700-20051473

bundle-58885

N/A VCF 4.3.1.1, VCF 4.4.x VCF, VCF on VxRail

 

VCF 4.5

Please refer to VC 7.0 U3f Release Notes to understand patch details and Known Issues.

Enabling  VC 7.0U3f patch will also update below SDDC Manager services
on VCF 4.4
- LCM
- Operations Manager
- Domain Manager
on VCF 4.3.1.1
- LCM
VC 7.0 U3d VCENTER:7.0.3.00500-19480866

bundle-55743

N/A VCF 4.3.1.1, VCF 4.4 VCF, VCF on VxRail

 

VCF 4.4.1 or later

Please refer to VC 7.0 U3d Release Notes to understand patch details and Known Issues.

Enabling  VC 7.0U3d patch will also update below SDDC Manager services
on VCF 4.4
- LCM
- Operations Manager
- Domain Manager
on VCF 4.3.1.1
- LCM

 

VxRail Version

Patch Identifier

Patch Bundle Name

Supported VCF Version Supported VCF SKU Prerequisites Minimum Target VCF Release*

Notes

VxRail 7.0.531-28777448 includes ESXi 7.0 Update 3q

VX_MANAGER:7.0.531-28777448

VXRAIL7-0-531-2877744826HDD_VxRail-7-0-531-Composite-Upgrade-Slim-Package-for-7-0-x-zip

VCF 4.5.2.0 VCF on VxRail VC 7.0 U3s On VCF 4.x line: No upgrade path at present. On VCF 5.x line: VCF 5.2.1.0

Notes: Please refer to VxRail 7.0.531-28777448 Release Notes Link 
to understand patch details and known issues. VxRail version 7.0.531 includes ESXi 7.0 Update 3q and VMware vSphere 7.0 Update 3s

Follow these mandatory steps before applying this patch:         - Follow the Async Patch Admin guide and refer the KB 91830  to download the patch specific partner bundle metadata file.

VxRail 8.0.212-28608599 includes ESXi 8.0 Update 2c VX_MANAGER: 8.0.212-28608599 VXRAIL8-0-212-28608599_CF1RC_VxRail-8-0-212-Composite-Upgrade-Slim-Package-for-8-0-x VCF 5.1.1.0 VCF on VxRail VC 8.0 Update 2c

On VCF 4.x line: No upgrade path at present.
On VCF 5.x line:
VCF 5.2.1

1. Please refer to VxRail 8.0.212-28608599 Release Notes Link to understand patch details and known issues. 

2. Follow these mandatory steps before applying this patch: ollow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.

VxRail 7.0.484-28593220  includes ESXi 7.0 Update 3p     VX_MANAGER:7.0.484-28593220     VXRAIL7-0-484-28593220KPW56_VxRail-7-0-484-Composite-Upgrade-Slim-Package-for-7-0-x-zip VCF 4.5.2.0     VCF on VxRail VC 7.0 U3m    

On VCF 4.x line: No upgrade path at present.


On VCF 5.x line: VCF 5.2.1

  

1. Please refer to VxRail 7.0.484-28593220 Release Notes Link to understand patch details and known issues. 

2. VxRail version 7.0.484 includes ESXi 7.0 Update 3p and VMware vSphere 7.0 Update 3m

3. Follow these mandatory steps before applying this patch
 
 Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.

VxRail 8.0.211-28535497 includes ESXi 8.0 Update 2b VX_MANAGER:8.0.211-28535497 VXRAIL8-0-211-285354973W4J0_VxRail-8-0-211-Composite-Upgrade-Slim-Package-for-8-0-x-zip VCF 5.1.1.0 VCF on VxRail VC 8.0 U2b On VCF 5.x line: VCF 5.2.1
Please refer to VxRail 8.0.211-28535497 Release Notes to understand patch details and known issues. VxRail version 8.0.211 includes VMware ESXi 8.0 Update 2b and VMware vCenter Server 8.0 Update 2b.
Follow these mandatory steps before applying this patch:
 
 - Follow DELL KB 000212019  to resolve a known issue in this patch.
        - Follow the Async Patch Admin guide and refer the KB 91830  to download the patch specific partner bundle metadata file.

VxRail 8.0.111-28310882 includes ESXi 8.0 Update 1c VX_MANAGER:8.0.111-28310882 VXRAIL8-0-111-28310882KT0HG_VxRail-8-0-111-Composite-Upgrade-Slim-Package-for-8-0-x-zip
 
VCF 5.0, VCF 5.0.0.1 VCF on VxRail VC 8.0 U1d
 
On VCF 5.x line: VCF 5.1.1 Please refer to VxRail 8.0.111-28310882 Release Notes to understand patch details and known issues. VxRail version 8.0.111 includes VMware vCenter Server 8.0 Update 1d and VMware ESXi 8.0 Update 1c.
Follow these mandatory steps before applying this patch:
- Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 8.0.201-28354422 includes ESXi 8.0 Update 2 VX_MANAGER:8.0.201-28354422 VXRAIL8-0-201-2835442254WD0_VxRail-8-0-201-Composite-Upgrade-Slim-Package-for-8-0-x-zip VCF 5.1 VCF on VxRail
 
On VCF 5.x line: VCF 5.1.1 Please refer to VxRail 8.0.201-28354422 Release Notes  to understand patch details and known issues. VxRail version 8.0.201 includes VMware vCenter Server 8.0 Update 2 a and VMware ESXi 8.0 Update 2.
Follow these mandatory steps before applying this patch:
- Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 7.0.521-28646835 includes ESXi 7.0 Update3q VX_MANAGER: 7.0.521-28646835 VXRAIL7-0-521-286468359VWH2_VxRail-7-0-521-Composite-Upgrade-Slim-Package-for-7-0-x-zip VCF 4.5.2 VCF on VxRail  VC 7.0 U3r

On VCF 4.x line: No upgrade path at present.

On VCF 5.x line: VCF 5.1.1

Please refer to VxRail 7.0.521-28646835 Release Notes to understand patch details and known issues. VxRail version 7.0.521 includes ESXi 7.0 Update 3rc and vSphere 7.0 Update 3q.

Follow these mandatory steps before applying this patch:
Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 7.0.483-28492387 includes ESXi 7.0 Update 3p VX_MANAGER:7.0.483-28492387 VXRAIL7-0-483-28492387PXH30_VxRail-7-0-483-Composite-Upgrade-Slim-Package-for-7-0-x-zip VCF 4.5.2.0 VCF on VxRail VC 7.0 U3p

On VCF 4.x line: No upgrade path at present.


On VCF 5.x line: 
VCF 5.2.1

Please refer to VxRail 7.0.483-28492387 Release Notes  to understand patch details and known issues. VxRail version 7.0.483 includes VMware ESXi 7.0 U3p and VMware vCenter Server 7.0 Update 3p.

Follow these mandatory steps before applying this patch:
- Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 7.0.482-28355940  includes ESXi 7.0 Update 3o VX_MANAGER:7.0.482-28355940
VXRAIL7-0-482-2835594081W82_VXRAIL_COMPOSITE-SLIM-7-0-482-28355940_for_7-0-x-zip
 
VCF 4.5.2.0 VCF on VxRail VC 7.0 U3o On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.1.1
Please refer to VxRail 7.0.482-28355940 Release Notes to understand patch details and known issues. VxRail version 7.0.482 includes VMware vCenter Server 7.0 Update 3o and VMware ESXi 7.0 Update 3o.
Follow these mandatory steps before applying this patch:
- Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 7.0.481-28302560  includes ESXi 7.0 Update 3o VX_MANAGER:7.0.481-28302560 VXRAIL7-0-481-28302560TJ50G_VxRail-7-0-481-Composite-Upgrade-Slim-Package-for-7-0-x-zip
 
VCF 4.5.2.0 VCF on VxRail VC 7.0 U3o On VCF 4.x line: No upgrade path at present.
On VCF 5.x line: VCF 5.1.1
Please refer to VxRail 7.0.481-28302560 Release Notes to understand patch details and known issues. VxRail version 7.0.481 includes VMware ESXi 7.0 U3o and VMware vCenter Server 7.0 Update 3o.

Follow these mandatory steps before applying this patch:
- Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 8.0.110-28169413  includes ESXi 8.0 Update 1c VX_MANAGER:8.0.110-28169413 VXRAIL8-0-110-281694137TGGF_VxRail-8-0-110-Composite-Upgrade-Slim-Package-for-8-0-x-zip VCF 5.0, VCF 5.0.0.1
 
VCF on VxRail VC 8.0 U1c On VCF 5.x line: VCF 5.1 Please refer to VxRail 8.0.110-28169413 Release Notes to understand patch details and known issues. VxRail version 8.0.110 includes VMware ESXi 8.0 Update1c and VMware vCenter Server 8.0  Update 1c.

Follow these mandatory steps before applying this patch:
- Follow the Async Patch Admin guide and refer the KB 91830  to download the patch specific partner bundle metadata file.
VxRail 7.0.451-28053212 includes ESXi 7.0 U3m VX_MANAGER:7.0.451-28053212

VXRAIL7-0-451-28053212NT43J_VxRail-7-0-451-Composite-Upgrade-Slim-Package-for-7-0-x-zip

VCF 4.5.1.0 VCF on VxRail

VC 7.0 U3l

On VCF 4.x line: VCF 4.5.2.0
On VCF 5.x line: VCF 5.1
Please refer to VxRail 7.0.451-28053212 Release Notes to understand patch details and known issues. VxRail version 7.0.451 includes VMware ESXi 7.0 U3m and VMware vCenter Server 7.0 U3l.

Follow these mandatory steps before applying this patch:
- Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 7.0.411-27954264 includes ESXi 7.0 U3k VX_MANAGER:7.0.411-27954264

VXRAIL7-0-411-27954264DF24Y_VxRail-7-0-411-Composite-Upgrade-Slim-Package-for-7-0-x-zip

VCF 4.5 VCF on VxRail VC 7.0 U3i VCF 4.5.1 Please refer to VxRail 7.0.411-27954264 Release Notes to understand patch details and known issues. VxRail version 7.0.411 includes VMware ESXi 7.0 U3k and VMware vCenter Server 7.0 U3k.

Follow these mandatory steps before applying this patch:
1. Follow DELL KB 000212019  to resolve a known issue in this patch.

2. Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.
VxRail 7.0.410-27831807
Includes ESXi 7.0 U3i
VX_MANAGER:7.0.410-27831807

VXRAIL7-0-410-27831807R5P0C_VxRail-7-0-410-Composite-Upgrade-Slim-Package-for-7-0-x-zip

VCF 4.5 VCF on VxRail VC 7.0 U3i or VC 7.0 U3j VCF 4.5.1 Please refer to VxRail 7.0.410-27831807 Release Notes to understand patch details and known issues. VxRail version 7.0.410 includes VMware ESXi 7.0 U3i and VMware vCenter Server 7.0 U3i.

Follow these mandatory steps before applying this patch:
1. Follow DELL KB 000212019 to resolve a known issue in this patch.

2. Follow the Async Patch Admin guide and refer the KB 91830 to download the patch specific partner bundle metadata file.


Applying an async patch to update a BOM component does not guarantee support for features introduced in the new version of the component. SDDC Manager supports the same features with the new version of the BOM component as it supported with the older version of the BOM component.

If you are looking for an individual product patch that is not listed or is not compatible with your environment, please contact VMware Support. Additionally, if you have applied a patch to your environment and would like to upgrade to a target VCF release that is not listed as being compatible, please contact VMware support.

Additional Information

Please refer to the Async Patch Tool for detailed instructions on utilizing the CLI tool to enable patches and enable forward upgrades in your VCF environment.


Impact/Risks:
https://docs.vmware.com/en/VMware-Cloud-Foundation/5.1/com.vmware.vcf.vxrail.doc/GUID-F396051A-9F79-4C5F-843D-C76D5037D631.html#GUID-8FA44ACE-8F04-47DA-845E-E0863094F7B0__GUID-FB0AE639-2862-4A0C-BBBF-072D03267D49