As more Heartbleed information become available more companies are issuing patches, so VMWare is no different as it issued a security advisory listing which products suffer from the Heartbleed vulnerability. The advisory also said the company released one patch.
Quite a list of products ended up mentioned: vCenter Server, ESXi, VMware Fusion, NSX-MH, NSX-V, NVP, Horizon Mirage Edge Gateway, Horizon View Feature Pack, Horizon View Client, Horizon Workspace Server, Horizon Workspace Client, Horizon Workspace for Macintosh, Horizon Workspace for Windows, OVF Tool, vCloud Networking and Security and vCloud Automation Center (vCAC). Of these, a patch released for Horizon Workspace Server.
An earlier VMWare knowledge base article listed the affected products, as well as a long list of unaffected VMWare products and services, plus one service — Socialcast — which underwent patching a few days ago.
The advisory also mentions another, lesser vulnerability in one implementation of OpenSSL which ends up fixed in the new version without specifically saying if VMWare ended up affected by it.
Click here to view the security advisory.