SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   VMware Horizon Vendors:   VMware
VMware Horizon Workspace Server OpenSSL TLS Heartbeat Buffer Overread Lets Remote Users Obtain Potentially Sensitive Information
SecurityTracker Alert ID:  1030088
SecurityTracker URL:  http://securitytracker.com/id/1030088
CVE Reference:   CVE-2014-0160   (Links to External Site)
Updated:  Apr 15 2014
Original Entry Date:  Apr 15 2014
Impact:   Disclosure of authentication information, Disclosure of system information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): Horizon Workspace Server 1.0, 1.5.x, 1.8
Description:   A vulnerability was reported in VMware Horizon Workspace Server. A remote user can obtain potentially sensitive information.

A remote user can trigger a buffer overread in the processing of the TLS heartbeat extension to obtain up to 64k of memory (per heartbeat request), potentially including encryption keys.

[Editor's note: This vulnerability is known as the OpenSSL heartbleed vulnerability.]

VMware Horizon Mirage Edge Gateway is also affected.

Neel Mehta of Google Security and researchers from Codenomicon reported this vulnerability.

Impact:   A remote user can obtain potentially sensitive information, including encryption keys.
Solution:   The vendor has issued a fix.

For Horizon Workspace Server 1.0: Upgrade to Horizon Workspace Server 1.5 and apply patch horizon-nginx-rpm-1.5.0.0-1736237.x86_64

For Horizon Workspace Server 1.5.x: horizon-nginx-rpm-1.5.0.0-1736237.x86_64

For Horizon Workspace Server 1.8: horizon-nginx-rpm-1.8.1.1810-1736201.x86_64

For Horizon Mirage Edge Gateway: 4.4.2

The vendor's advisory is available at:

http://www.vmware.com/security/advisories/VMSA-2014-0004.html

Vendor URL:  www.vmware.com/security/advisories/VMSA-2014-0004.html (Links to External Site)
Cause:   Access control error, Boundary error

Message History:   None.


 Source Message Contents

Subject:  [Security-announce] NEW VMSA-2014-0004 VMware product updates address OpenSSL security vulnerabilities (Heartbleed - CVE-2014-0160)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -----------------------------------------------------------------------
VMware Security Advisory

Advisory ID: VMSA-2014-0004
Synopsis:    VMware product updates address OpenSSL security
vulnerabilities
Issue date:  2014-04-14
Updated on:  2014-04-14 (initial advisory)
CVE numbers: CVE-2014-0076 and CVE-2014-0160
- -----------------------------------------------------------------------

1. Summary

   VMware product updates address OpenSSL security vulnerabilities.

   Throughout the week of April 14, VMware will be releasing product 
   updates that address the openssl Heartbleed issue. This advisory 
   will be updated for each product release. VMware expects to have 
   updated products and patches for all affected products in VMware
   Knowledge Article article 2076225 by April 19th.


2. Relevant releases

   Horizon Workspace Server 1.0
   Horizon Workspace Server 1.5.x without patch 
              horizon-nginx-rpm-1.5.0.0-1736237.x86_64
   Horizon Workspace Server 1.8.0 without patch 
              horizon-nginx-rpm-1.8.1.1810-1736201.x86_64

    
3. Problem Description

   a. Information Disclosure vulnerability in OpenSSL third party library

      The OpenSSL library is updated to version openssl-1.0.1g to 
      resolve multiple security issues.
 
      The Common Vulnerabilities and Exposures project (cve.mitre.org) has
      assigned the names CVE-2014-0076 and CVE-2014-0160 to these issues.

      CVE-2014-0160 is known as the Heartbleed issue. More information
      on this issue may be found in the reference section.

      Column 4 of the following table lists the action required to
      remediate the vulnerability in each release, if a solution is
      available.

        VMware                          Product  Running   Replace with/
        Product                         Version  on        Apply Patch 
        ==============                  =======  =======   =============
        vCenter Server                  5.5      Windows   patch pending
        ESXi                            5.5      ESXi      patch pending 
        VMware Fusion                   6.0.x    OSX       patch pending
        NSX-MH                          4.x                patch pending
        NSX-V                           6.0.x              patch pending
        NVP                             3.x                patch pending
        Horizon Mirage Edge Gateway     4.4.x              patch pending
        Horizon View Feature Pack       5.3 FP 1           patch pending
        Horizon View Client             2.1.x    Android   patch pending
        Horizon View Client             2.2.x    Android   patch pending
        Horizon View Client             2.3.x    Android   patch pending
        Horizon View Client             2.1.x    IOS       patch pending
        Horizon View Client             2.2.x    IOS       patch pending
        Horizon View Client             2.3.x    IOS       patch pending
        Horizon View Client             2.3.x    Windows   patch pending 

        Horizon Workspace Server        1.0                Horizon 
                                                           Workspace 
                                                           Server 1.5
                                                           and apply patch
                                                           horizon-nginx
                                                           -rpm-1.5.0.0-
                                                           1736237.x86_64

        Horizon Workspace Server        1.5.x              horizon-nginx
                                                           -rpm-1.5.0.0-
                                                           1736237.x86_64

        Horizon Workspace Server        1.8                horizon-nginx
                                                           -rpm-1.8.1.1810
                                                           -1736201.x86_64

        Horizon Workspace Client        1.5.1    OSX       patch pending
        Horizon Workspace Client        1.5.2    OSX       patch pending
        Horizon Workspace Client        1.5.1    Windows   patch pending
        Horizon Workspace Client        1.5.2    Windows   patch pending
        Horizon Workspace Client        1.8      OSX       patch pending
        for Macintosh 
        Horizon Workspace Client        1.8      Windows   patch pending
        for Window     
        VMware OVF Tool                 3.5.0              patch pending
        vCloud Networking and Security  5.1.3              patch pending
        vCloud Networking and Security  5.5.1              patch pending
        vCloud Automation Center (vCAC) 6.x                patch pending   
   

      Note

      Products that are not affected by these issues have been documented
      in VMware Knowledge Base article 2076225. 

4. Solution

   Please review the patch/release notes for your product and version
   and verify the checksum of your downloaded file. 
  
   Horizon Workspace Server 1.5
   ----------------------------
   File: horizon-nginx-rpm-1.5.0.0-1736237.x86_64.rpm
   md5sum: bc4cc609f926701cac2b199f895ab16d
   sha1sum: fa456e042698a2cb19077fbd2199d948532af0c8

   Release Notes and download: 
   http://kb.vmware.com/kb/2076551

   Horizon Workspace Server 1.8
   ----------------------------
   File: horizon-nginx-rpm-1.8.1.1810-1736201.x86_64.rpm
   md5sum: 06700c790119a4ac4780628f258f0983
   sha1sum: 0c4186e56f7c08b4323d1004ea94251fb74812d5
   
   Release Notes and download: 
   http://kb.vmware.com/kb/2076551

5. References

   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0076
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160

   VMware Knowledge Base article 2076225. 
   http://kb.vmware.com/kb/2076225
 
   The Heartbleed Bug
   http://heartbleed.com/

- -----------------------------------------------------------------------

6. Change log

   2014-04-14 VMSA-2014-0004
   Initial security advisory in conjunction with the release of
   Horizon Workspace Server 1.8 and 1.5 updates on 2014-04-14

- -----------------------------------------------------------------------

7. Contact

   E-mail list for product security notifications and announcements:
   http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce

   This Security Advisory is posted to the following lists:

   * security-announce at lists.vmware.com
   * bugtraq at securityfocus.com
   * fulldisclosure at seclists.org

   E-mail: security at vmware.com
   PGP key at: http://kb.vmware.com/kb/1055

   VMware Security Advisories
   http://www.vmware.com/security/advisories

   VMware security response policy
   http://www.vmware.com/support/policies/security_response.html
  
   General support life cycle policy
   https://www.vmware.com/support/policies/general.html

   Twitter
   https://twitter.com/VMwareSRC

   Copyright 2014 VMware Inc.  All rights reserved..

-----BEGIN PGP SIGNATURE-----
Version: Encryption Desktop 10.3.0 (Build 8741)
Charset: utf-8

wj8DBQFTTJS9DEcm8Vbi9kMRAvKJAJ40jsew6lgYey2xtNq5L+38uC0mhwCgjFTD
dRsxMxsePEvW9r/es5HAc+s=
=hohQ
-----END PGP SIGNATURE-----
_______________________________________________
Security-announce mailing list
Security-announce@lists.vmware.com
http://lists.vmware.com/mailman/listinfo/security-announce
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC