Blogs

ESXi-Arm 9.1 Tech Preview Download Availability

By Michael Ling posted 2 days ago
Be the first person to recommend this.
By: Michael Ling Hi All, We’re happy to announce that the ESXi-Arm Fling is now officially available as a ESX 9.1 Tech Preview. Attached here is the Arm 9.1 Tech Preview Readme file. If you have the appropriate VCF entitlements and login access, you can access and download the Arm bits here: Broadcom Link Thank you to the community for your patience, and please continue sharing your feedback, as it helps us improve the experience.
0 comments

CA Client Automation - Patch Management - Published Patch Me OS Security Rollup and Office Security IntelliRollups for May, 2026(v2605.00)

By Sreekanth Chejarla posted 2 days ago
Be the first person to recommend this.
On behalf of CA Technologies, a Broadcom Company, we are pleased to notify you that rollups for May, 2026 are now available. The following rollups have been published: Rollups: CA - Patch Me - Security IntelliRollup v2605.00 CA - Office 32Bit - Security IntelliRollup v2605.00 CA - Office 64Bit - Security IntelliRollup v2605.00 These items will be available for acceptance in your Patch Manager GUI after the next successful run of the “Software Contents Download Job”. As of February 2026, Microsoft has fully discontinued Extended Security Updates (ESU) for Microsoft Windows Server 2008 and Microsoft Windows Server ...
0 comments

Critical NGINX RCE vulnerability CVE-2026-42945

By Beltran Rueda Borrego posted 3 days ago
Be the first person to recommend this.
A critical security issue, dubbed NGINX Rift and identified as CVE-2026-42945 , has been disclosed. This vulnerability affects both NGINX Open Source and NGINX Plus. We are publishing this post to provide immediate guidance and confirm the rapid release of patched images for all affected Bitnami customers. Understanding the Critical Flaw: NGINX Rift (CVE-2026-42945) The NGINX Rift vulnerability is a critical heap-based buffer overflow flaw discovered within the ngx_http_rewrite_module . This memory corruption issue has existed for 18 years and affects NGINX Open Source versions 0.6.27 through 1.30.0, as well as NGINX Plus R32 through R36. ...
0 comments

CA Client Automation - Patch Management - Published Windows OS and Office Security Individual Patches for May, 2026

By Sreekanth Chejarla posted 4 days ago
Be the first person to recommend this.
On behalf of CA Technologies, a Broadcom Company, we are pleased to notify you that individual patches for May, 2026 is now available. The following Individual patches have been published: 2026-05 Cumulative Update - Win10-kb5087537-x86-1607 2026-05 Cumulative Update - Win10-kb5087538-x86-1809 2026-05 Cumulative Update - Win10-kb5087544-x64-21H2-22H2 2026-05 Cumulative Update - Win10-kb5087544-x86-21H2-22H2 2026-05 Cumulative Update - Win10-Server2016-kb5087537-x64-1607 2026-05 Cumulative Update - Win10-Server2019-kb5087538-x64-1809 2026-05 Cumulative Update - Win11-kb5087420-x64-23H2 ...
0 comments

General Availability of Nolio Release Automation Patch 6.9.4

By Pavel Sestak posted 6 days ago
Be the first person to recommend this.
We’re excited to announce the release of Nolio 6.9.4 , bringing key enhancements, a better user experience, and critical fixes. Enhancements include: Expanded Platform Support: Certified for Windows Server 2025 (agents) and Red Hat Enterprise Linux (RHEL) 10 (all components). mTLS Security Update: Enhanced support for serverAuth-only certificates for secure NES ↔ Agent communication. Security Library Upgrades: Upgraded to Apache Tomcat 9.0.117 , Spring Framework 5.3.48 , and Log4J 2.25.4 . UI Overhaul: Significant rework of the Releases , Artifacts , Designer , and Administration ...
0 comments

VMware vDefend for VCF 9.1: Zero Trust Lateral Security for the AI Era

By Michelle Plato posted 11 days ago
Be the first person to recommend this.
New enhancements include Self-Service Lateral Security with VCF Automation, Unified Lateral Threat Prevention for VMs and VKS Workloads, High-Performance Threat Prevention with IDPS Turbo Mode, and Enhanced Distributed Firewall capabilities. The rapid adoption of production AI workloads is reshaping the enterprise technology landscape, driving the growth of Kubernetes environments alongside existing VM-based infrastructure. As organizations deploy AI agents and AI workloads across private cloud environments spanning VMs and Kubernetes, the attack surface becomes larger and more dynamic. The result is a rapidly evolving threat landscape, driving the need ...
0 comments

Critical Apache RCE Patched — Bitnami Ships Fixes in Under 24 Hours

By Carlos Rodriguez posted 12 days ago
Be the first person to recommend this.
A remotely exploitable memory corruption flaw in Apache HTTP Server's HTTP/2 stack was disclosed on May 4, 2026. The Bitnami catalog responded the same day, pushing a patched Apache container image within hours and completing downstream updates across five applications the following morning. The Vulnerability On May 4, 2026, the Apache Software Foundation released version 2.4.67 of the Apache HTTP Server, addressing CVE-2026-23918 — a critical double-free memory corruption bug rated HIGH . The flaw lives in Apache's HTTP/2 implementation. When a remote client sends an early reset on an HTTP/2 stream, it can trigger a double-free condition ...
0 comments

Virtual Patching: Guarding Against a Tsunami of AI-discovered Exploits with vDefend and Avi

By Michelle Plato posted 12 days ago
Be the first person to recommend this.
As the digital landscape enters the age of Artificial Intelligence, the traditional methods of securing applications are being fundamentally challenged. The emergence of advanced AI models has shifted the advantage towards attackers. With AI, even a novice attacker is now weaponized into a sophisticated hacker while operating semi-autonomously at very low cost, and unprecedented scale. Imagine the massive damage that ransomware gangs and/or nation-state actors could do with these cyber weapons. In recent times, ransomware attacks have led to business operations going offline for weeks and months, resulting in financial losses in hundreds of millions of dollars. ...
0 comments

Fresh From the Labs: CloudHealth Product Updates April 2026

By TJ March posted 13 days ago
Be the first person to recommend this.
Fresh From the Labs: CloudHealth Product Updates April 2026 About the Author: Cathal Cleary - Product Leader, CloudHealth | Governing Board, FinOps Foundation Another month has gone by in a flash! We are only a little over a month away from the FinOpsX conference in San Diego. CloudHealth will be there, and we have some exciting features to showcase in the space of AI, Scopes, Optimization and Executive Alignment. Make sure you come by our booth on the expo floor to pick up some cool swag, check out a demo, or just to say hi. If you're looking for a more personalized, in-depth conversation, request a meeting with the CloudHealth Product Management ...
0 comments

Unified Alerting Experience in DX Operational Observability 26.4.1 (SaaS)

By Sheenam Gupta posted 23 days ago
Be the first person to recommend this.
Heads Up! Rolling Out the New Pipeline and Consolidated UI Providing a unified experience for functional teams across IT involving data, alerts, insights and automation is a core tenet of DX Operational Observability (DX O2). With DX O2 26.4.1 (SaaS), we continue with these enhancements by establishing a unified alerting experience via a new pipeline and user interface. These changes will set the stage for greater scalability and provide a consistent, reliable way for you to manage alarms and notifications. No action is required from you to complete the transition. For your understanding, please refer to this short video that outlines ...
0 comments

Why Cloud Bills Surprise Everyone (And What to Do Before the Next One)

By TJ March posted 24 days ago
Be the first person to recommend this.
Why Cloud Bills Surprise Everyone (And What to Do Before the Next One) Author: Jason Powell - Technical Solutions Engineer Cloud costs behave differently than traditional infrastructure spending. Until organizations account for that, the invoice will keep catching them off guard. Monday, 9:14AM: "Can someone explain why our AWS bill jumped $47K from last month?" That message from the VP of Finance hits the #cloud-ops Slack channel, and suddenly everyone's morning changes. The infrastructure lead starts pulling Cost Explorer. A DevOps engineer quietly checks if that load test from two weeks ago is still running. The FinOps ...
0 comments

What's New in AppDev (CA Harvest SCM, CA 2E and CA Plex) - Office Hours

By Arun Painuly posted 24 days ago
1 person recommends this.
Hello Everyone. Join us for an inside look at what is coming next in CA Harvest SCM, CA 2E and CA Plex on April 29th @ 11am EST. From new features to usability enhancements, you will get a first-hand preview of how we are evolving the solutions to support customers better and our sustained commitment to these solutions and their long-term viability. In this session, we will cover: • What's New in Recent Releases: A deep dive into the most important new features, enhancements and updates across CA Harvest SCM, CA 2E and CA Plex • Discover how these improvements can immediately boost productivity, security, developer experience and ...
0 comments

Layer7 Work in Progess Update - PI 44

By Gregory Thompson posted 25 days ago
Be the first person to recommend this.
PI Planning for PI44 is now complete and development has kicked off. Below you will find the list of items that are included in this PI and a summary of the releases completed in the previous PI. As always, we invite you to provide feedback. We would love feedback on both the current and future PI items to help us prioritize the items that will have the most benefit for our customers. Recent Releases The following product versions were released during PI43: API Portal 5.4.1 - Release Notes API Gateway 11.2.1 - Release Notes OAuth Toolkit (OTK) 4.7 - Release Notes Mobile SDK 2.6 - Release Notes ...
0 comments

Mastering Distributed Traces with DX O2: Span-to-Component Mapping, Correlation, and a Jaeger Comparison - Part 2

By Srinivas Venkata Bevara posted 26 days ago
Be the first person to recommend this.
In Part 1 , we learned how to explore a transaction trace from entry point to attributes. Now, we’ll move from exploration to implementation. We’ll see how DX O2 maps OpenTelemetry span kinds to components, how correlation rules rebuild the full trace tree, what ingestion patterns keep your traces accurate, and finally, how DX O2 compares with Jaeger when visualizing the same data. But knowing how to view traces is only half the story. The real challenge for DevOps and platform teams is making sure those traces are mapped correctly, correlated across services, and sampled in a way that preserves accuracy without overwhelming the system. This part ...
0 comments

CA Client Automation - Patch Management - Published Patch Me OS Security Rollup and Office Security IntelliRollups for April, 2026(v2604.00)

By Sreekanth Chejarla posted 30 days ago
Be the first person to recommend this.
On behalf of CA Technologies, a Broadcom Company, we are pleased to notify you that rollups for April, 2026 are now available. The following rollups have been published: Rollups: CA - Patch Me - Security IntelliRollup v2604.00 CA - Office 32Bit - Security IntelliRollup v2604.00 CA - Office 64Bit - Security IntelliRollup v2604.00 These items will be available for acceptance in your Patch Manager GUI after the next successful run of the “Software Contents Download Job”. As of February 2026, Microsoft has fully discontinued Extended Security Updates (ESU) for Microsoft Windows Server 2008 and Microsoft Windows Server ...
0 comments

CA Client Automation - Patch Management - Published Windows OS and Office Security Individual Patches for April, 2026

By Sreekanth Chejarla posted Apr 15, 2026
Be the first person to recommend this.
On behalf of CA Technologies, a Broadcom Company, we are pleased to notify you that individual patches for April, 2026 is now available. The following Individual patches have been published: 2026-04 Net Framework 4.8.1 - Win10-kb5082419-x86-21H2-22H2 2026-04 Cumulative Update - Win10-Server2016-kb5082198-x64-1607 2026-04 Cumulative Update - Win10-kb5082200-x86-21H2-22H2 2026-04 Net Framework 4.8.1 - WinServer2025-kb5082417-x64-24H2 2026-04 Net Framework 4.7.2 - Win10-Server2019-kb5082413-x64-1809 2026-04 Net Framework 4.7.2 - Win10-kb5082413-x86-1809 2026-04 Security Monthly Quality Rollup - Windows8.1-kb5082126-x64 ...
0 comments

CA Plex r7.2.1 and CA Plex r7.3.0 Certification for IBM i 7.6 on Power 10

By Arun Painuly posted Apr 15, 2026
1 person recommends this.
Hello All, We are pleased to announce that CA Plex r7.3.0 and CA Plex r7.2.1 are now officially certified with IBM i 7.6 on Power 10 . Please refer to the updated compatibility matrix here . The Plex documentation spaces have also been updated with the latest compatibility matrix. Thank you for your continued partnership. Best Regards, P lex2E Team | Broadcom Inc. Upcoming Event Details: Event: AppDev Office Hours for Harvest, 2E and Plex Date : April 29th, 11 AM EST Register here
0 comments

Building highly secure PHP applications with Bitnami Secure Images

By Jesus Benito posted Apr 14, 2026
Be the first person to recommend this.
A typical community-like PHP container image ships with ~400 packages, weighs around 500 MB, and carries dozens of known CVEs. Most of the packages (package managers, shells, libraries) have nothing to do with serving your application and are not required for it to run. They are simply dead weight that widens your attack surface In this post, you will learn how to use Bitnami Secure Images (BSI) to build a PHP container that is a fraction of that size and starts with zero known vulnerabilities. By the end, you will have a production-ready, multi-stage Dockerfile you can drop into any Composer-based PHP project. What Are Bitnami Secure Images (BSI)? Bitnami ...
0 comments

Building highly secure PHP applications with Bitnami Secure Images

By Jesus Benito posted Apr 14, 2026
Be the first person to recommend this.
A typical community-like PHP container image ships with ~400 packages, weighs around 500 MB, and carries dozens of known CVEs. Most of the packages (package managers, shells, libraries) have nothing to do with serving your application and are not required for it to run. They are simply dead weight that widens your attack surface In this post, you will learn how to use Bitnami Secure Images (BSI) to build a PHP container that is a fraction of that size and starts with zero known vulnerabilities. By the end, you will have a production-ready, multi-stage Dockerfile you can drop into any Composer-based PHP project. What Are Bitnami Secure Images (BSI)? Bitnami ...
0 comments

Get Started with GenAI & LLM Observability with DX Operational Observability

By Ashish Aggarwal posted Apr 11, 2026
Be the first person to recommend this.
Generative AI (GenAI) is quickly transitioning from experimental chatbots to enterprise-critical applications. As organizations integrate Large Language Models (LLMs) into their products and services, and core workflows—often leveraging the robust Spring AI framework—new challenges are emerging which involve AI performance, costs and quality of output. By taking advantage of data available to IT operations, enterprises can make well-informed decisions to avoid pitfalls common to helpful but disruptive technologies. Welcome to the world of LLM Observability ! Traditional metrics like CPU and memory are no longer enough to explain why an AI-driven ...
0 comments