VMware ACE 2.7.2 Release Notes

• What's New
• Prior Releases
• Known Issues
• Resolved Issues

What's New

VMware ACE 2.7.2 is a maintenance release that resolves security as well as some known issues. The resolved issues listed in the VMware Workstation 7.1.2 Release Notes are also applicable to VMware ACE.

Prior Releases of VMware ACE

New features from prior releases of VMware ACE are described in the release notes for each release, along with existing known issues. To view release notes for the prior release of VMware ACE, see VMware ACE 2.7.1 and VMware ACE 2.7.

Known Issues

The known issues listed in the VMware Workstation 7.1.2 release notes are also applicable to VMware ACE.

Resolved Issues

• VMware ACE Management Server for Windows updates Apache httpd to version 2.2.15
  A function in Apache HTTP Server when multithreaded MPM is used does not properly handle headers in subrequests in certain circumstances which might allow remote attackers to obtain sensitive information via a crafted request that triggers access to memory locations associated with an earlier request.
  
  The Apache mod_isapi module can be forced to unload a specific library before the processing of a request is complete, resulting in memory corruption. This vulnerability might allow a remote attacker to execute arbitrary code.
  
  The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2010-0434 and CVE-2010-0425 to the issues addressed in this update.
• Pressing the Ctrl+Alt+Enter keys on an ACE virtual machine running in kiosk mode might cause the keyboard to become unresponsive.
• PCI devices cannot be added back into encrypted ACE virtual machines if removed accidentally by non-ACE Administrators. To fix this issue, only ACE Administrators can add or remove PCI devices to ACE virtual machines after entering the Admin mode password.

Top of Page