Fedora 37: open-vm-tools 2022-1b8d3b2845 | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-1b8d3b2845
2022-09-14 00:18:15.239534
--------------------------------------------------------------------------------

Name        : open-vm-tools
Product     : Fedora 37
Version     : 12.1.0
Release     : 1.fc37
URL         : https://github.com/vmware/open-vm-tools
Summary     : Open Virtual Machine Tools for virtual machines hosted on VMware
Description :
The open-vm-tools project is an open source implementation of VMware Tools. It
is a suite of open source virtualization utilities and drivers to improve the
functionality, user experience and administration of VMware virtual machines.
This package contains only the core user-space programs and libraries of
open-vm-tools.

--------------------------------------------------------------------------------
Update Information:

Package new upstream version open-vm-tools-12.1.0-20219665.  ----  Security fix
for CVE-2022-31676
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep  8 2022 John Wolfe  - 12.1.0-1
- Package new upstream version open-vm-tools-12.1.0-20219665.
  . fix for CVE-2022-31676 - a local privilege escalation vulnerability.
  . address a number of Coverity reported issues.
- Remove patch 1205-Properly-check-authorization-on-incoming-guestOps-re.patch
  as no longer needed.
* Sun Sep  4 2022 John Wolfe  - 12.0.5-3
- Add patch 1205-Properly-check-authorization-on-incoming-guestOps-re.patch
  to fix CVE-2022-31676 in open-vm-tools 12.0.5 tracked in PR 120976.
- Correct build requirements - replace systemd-rpm-macros with systemd_udev.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2118714 - CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine
        https://bugzilla.redhat.com/show_bug.cgi?id=2118714
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-1b8d3b2845' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 37: open-vm-tools 2022-1b8d3b2845

September 13, 2022
Package new upstream version open-vm-tools-12.1.0-20219665

Summary

The open-vm-tools project is an open source implementation of VMware Tools. It

is a suite of open source virtualization utilities and drivers to improve the

functionality, user experience and administration of VMware virtual machines.

This package contains only the core user-space programs and libraries of

open-vm-tools.

Update Information:

Package new upstream version open-vm-tools-12.1.0-20219665. ---- Security fix for CVE-2022-31676

Change Log

* Thu Sep 8 2022 John Wolfe - 12.1.0-1 - Package new upstream version open-vm-tools-12.1.0-20219665. . fix for CVE-2022-31676 - a local privilege escalation vulnerability. . address a number of Coverity reported issues. - Remove patch 1205-Properly-check-authorization-on-incoming-guestOps-re.patch as no longer needed. * Sun Sep 4 2022 John Wolfe - 12.0.5-3 - Add patch 1205-Properly-check-authorization-on-incoming-guestOps-re.patch to fix CVE-2022-31676 in open-vm-tools 12.0.5 tracked in PR 120976. - Correct build requirements - replace systemd-rpm-macros with systemd_udev.

References

[ 1 ] Bug #2118714 - CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine https://bugzilla.redhat.com/show_bug.cgi?id=2118714

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-1b8d3b2845' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : open-vm-tools
Product : Fedora 37
Version : 12.1.0
Release : 1.fc37
URL : https://github.com/vmware/open-vm-tools
Summary : Open Virtual Machine Tools for virtual machines hosted on VMware

News

Advisories

HOWTOs

Features

A Complete Guide to Security Automation & Reporting Using Open Source Tools
How to Check if Your Linux System is Infected with a Virus
Security Considerations for Azure Linux & Windows Subsystem for Linux Users
Admins Receive Automated Linux Patch Management & Improved Security with ManageEngine Endpoint Central
Linux Malware: The Truth About This Growing Threat [Updated]

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy