Today VMware has released the following updated security advisory:


The advisory was updated to document the release of an ESXi 5.1 patch that addresses CVE-2013-5211, “DDoS vulnerability in NTP third party library”. VMware Knowledge Base article 2070193 provides mitigation for this issue and documents when vSphere components are affected.

The ESXi 5.1 patches released today are not related to the OpenSSL Heartbleed issue (ESXi 5.1 and below are not affected by this issue). The product releases and patches remediating the Heartbleed issue have concluded and are all documented in VMware Security Advisory VMSA-2014-0004.

Please sign up to the Security-Announce mailing list to receive new and updated VMware Security Advisories.

Customers should review the security advisory and direct any questions to VMware Support.