VMware Aria Operations for Logs 8.18.1
Article ID: 382614
Updated On:
Products
Issue/Introduction
This article covers the changes made in VMware Aria Operations for Logs 8.18.1 from previous versions:
- Aria Operations for Logs 8.18 Patching/Upgrade from Aria Suite Lifecycle is failing
The following CVEs have been resolved as of VMware Aria Operations for Logs 8.18.1 :
|
Component Name |
CVE |
|
Data Mapper for Jackson |
CVE-2019-10172 |
|
CVE-2019-10202 |
|
|
libTIFF |
CVE-2023-3164 |
|
CVE-2023-40745 |
|
|
CVE-2023-41175 |
|
|
CVE-2023-52355 |
|
|
Linux Kernel |
CVE-2024-36901 |
|
CVE-2022-48666 |
|
|
CVE-2024-39482 |
|
|
CVE-2024-39484 |
|
|
CVE-2024-36938 |
|
|
CVE-2024-38577 |
|
|
CVE-2021-47188 |
|
|
CVE-2024-27397 |
|
|
CVE-2024-24855 |
|
|
CVE-2024-44947 |
|
|
CVE-2024-44985 |
|
|
CVE-2024-44986 |
|
|
CVE-2024-44987 |
|
|
CVE-2024-44989 |
|
|
CVE-2024-44998 |
|
|
CVE-2024-44999 |
|
|
OpenSSL |
CVE-2022-3996 |
|
CVE-2022-4203 |
|
|
CVE-2022-4450 |
|
|
CVE-2023-0216 |
|
|
CVE-2023-0217 |
|
|
CVE-2023-0401 |
|
|
PillowPython |
CVE-2023-4863 |
|
CVE-2023-50447 |
|
|
Scala |
CVE-2022-36944 |
|
snappy-java |
CVE-2023-43642 |
|
sysstat |
CVE-2023-33204 |
|
The FreeType Project |
CVE-2015-9290 |
|
CVE-2015-9381 |
|
|
CVE-2015-9382 |
|
|
CVE-2015-9383 |
|
|
CVE-2016-10244 |
|
|
CVE-2016-10328 |
|
|
CVE-2017-7858 |
|
|
CVE-2017-7864 |
|
|
CVE-2017-8105 |
|
|
CVE-2017-8287 |
|
|
CVE-2018-6942 |
|
|
CVE-2020-15999 |
|
|
CVE-2022-27404 |
|
|
CVE-2022-27405 |
|
|
CVE-2022-27406 |
|
|
urllib3 |
CVE-2021-33503 |
Environment
VMware Aria Operations for Logs 8.18.1
Resolution
Prerequisites
- Create a snapshot or backup copy of the VMware Aria Operations for Logs virtual appliance(s)
- Obtain a copy of the VMware Aria Operations for Logs upgrade bundle .pak file for the release you are upgrading to from the Broadcom Support Portal.
- Verify that you are logged in to the VMware Aria Operations for Logs web user interface as a user with the Edit Admin permission. The URL format is https://log-insight-host, where log-insight-host is the IP address or host name of the primary node of the VMware Aria Operations for Logs virtual cluster.
- Make a note of any nodes you are upgrading that are in maintenance mode. Ensure you take all nodes out of maintenance mode prior to the upgrade. When the upgrade is finished, you may move them from the state Connected to Maintenance mode.
Procedure
- Under Management, click Cluster.
- Click 'Upgrade Cluster' to upload the pak file.
- Accept the new EULA to complete the upgrade procedure.
- Reference Document Link: Upgrading VMware Aria Operations for Logs
What to do next
-
- After the primary node upgrade process is complete, you can view the remaining upgrade process, which is automatic.
- Check for the email sent to the Admin to confirm the upgrade completed successfully.
- Remove the snapshots from the VMware Aria Operations for Logs appliance(s) within ~72 hours after a successful upgrade to avoid performance issues
Additional Information
Once the update is completed successfully, delete the snapshots you made before the software update.
Feedback
