BugZero | Hewlett Packard Enterprise BugID a00155656en_us - HPE Smart Update Manager (SUM)

BugZero | Hewlett Packard Enterprise BugID a00155656en_us - HPE Smart Update Manager (SUM) - Firmware Pack for...

Hewlett Packard Enterprise - Defect ID: a00155656en_us

HPE Smart Update Manager (SUM) - Firmware Pack for ProLiant Repository Will Be Ignored by SUM RPM if Hosted on an HTTPS Server With Custom Certificate Authority (CA) Certificates

Hewlett Packard Enterprise - Defect ID: a00155656en_us

HPE Smart Update Manager (SUM) - Firmware Pack for ProLiant Repository Will Be Ignored by SUM RPM if Hosted on an HTTPS Server With Custom Certificate Authority (CA) Certificates

Last updated on December 3rd, 2025

BugZero Risk Score
5.9 Medium

Overall: 5.9

Severity: 6.4

Community: 5.5

What is the BugZero Risk Score?

Hewlett Packard Enterprise Integration

Learn more about where this data comes from

Hewlett Packard Enterprise Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Priority: Medium
Views: 2

Description

Summary

When using SUM RPM commands, firmware updates will fail to discover any RPM or FWPKG components if the following conditions occur:Firmware Pack for ProLiant repository is cloned locally (from the HPE Software Delivery Repository).Hosted in an HTTPS server.Using custom CA certificates.SUM performs a certificate validation against a list of known CA public certificates; however, SUM is not aware of the system CA-bundle file. As a result, SUM will not use any files hosted on that HTTPS repository.

Scope

In the scenario described above, any HPE platform using any SUM version.

Resolution

A future SUM version will avoid this issue. This advisory will be updated when additional solutions become available.As a workaround, specify the CA bundle file for Python requests with the command shown below. The below example is for Red Hat Enterprise Linux 9.REQUESTS_CA_BUNDLE="/etc/pki/tls/certs/ca-bundle.crt" smartupdate <argument>Note:Refer to the Linux distribution and version documentation on the appropriate file to use for the CA chain bundle.

Affected OS

Operating Systems Affected:Not Applicable

Change history

2025-12-03 Added: Smart Update Manager (SUM)

Top Hewlett Packard Enterprise Defects

8.3Defect ID: a00156336en_us
HPE NVMe E3.S SSDs - Certain SSDs From Certain Option Kits May Fail After Being Updated to Drive Firmware Version HPK3
8.0Defect ID: a00133193en_us
VMware - PSOD May Be Experienced On HPE ProLiant Servers Running VMware ESXi 8.0 / 9.0 When a VM Is Started With an NVIDIA GPU Configured as a PCI Pass-Through Device
8.0Defect ID: a00156823en_us
HPE NVMe E3.S SSDs - HPE Synergy Service Pack (SSP) 2025.10.01 and SSP 2026.01.01 Releases May Cause SSDs Issues and Will be Re-Released
8.0Defect ID: a00144835en_us
HPE Multiple Platform Servers - Detecting Uncorrectable Memory Errors with 4th Gen and 5th Gen Intel Processors When Using Single And Multi-Ranked DIMMs and With Package C6 Enabled
8.0Defect ID: a00156058en_us
HPE NVMe SSDs - Direct-Attached NVMe Drives Using a UBM6 Backplane May Randomly Disappear as "Removed" and Reappear as "Inserted" in the HPE Integrated Management Log

Ready to prevent the next vendor outage?

Get a demo

Hewlett Packard Enterprise - Defect ID: a00155656en_us

HPE Smart Update Manager (SUM) - Firmware Pack for ProLiant Repository Will Be Ignored by SUM RPM if Hosted on an HTTPS Server With Custom Certificate Authority (CA) Certificates

Hewlett Packard Enterprise - Defect ID: a00155656en_us

HPE Smart Update Manager (SUM) - Firmware Pack for ProLiant Repository Will Be Ignored by SUM RPM if Hosted on an HTTPS Server With Custom Certificate Authority (CA) Certificates

Last updated on December 3rd, 2025

BugZero Risk Score5.9 Medium

Bug Details

Summary

Scope

Resolution

Affected OS

Links

Top Hewlett Packard Enterprise Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
5.9 Medium