Oracle Linux Security Advisory ELSA-2023-3949

https://linux.oracle.com/errata/ELSA-2023-3949.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
open-vm-tools-12.1.5-1.0.2.el8.x86_64.rpm
open-vm-tools-desktop-12.1.5-1.0.2.el8.x86_64.rpm
open-vm-tools-salt-minion-12.1.5-1.0.2.el8.x86_64.rpm
open-vm-tools-sdmp-12.1.5-1.0.2.el8.x86_64.rpm



SRPMS:
https://oss.oracle.com/ol8/SRPMS-updates//open-vm-tools-12.1.5-1.0.2.el8.src.rpm

Related CVEs:

CVE-2023-20867




Description of changes:

[12.1.5-1.0.2]
- [CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module


_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle8: ELSA-2023-3949: open-vm-tools security Low Security Update

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

[12.1.5-1.0.2] - [CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module

SRPMs

https://oss.oracle.com/ol8/SRPMS-updates//open-vm-tools-12.1.5-1.0.2.el8.src.rpm

x86_64

open-vm-tools-12.1.5-1.0.2.el8.x86_64.rpm open-vm-tools-desktop-12.1.5-1.0.2.el8.x86_64.rpm open-vm-tools-salt-minion-12.1.5-1.0.2.el8.x86_64.rpm open-vm-tools-sdmp-12.1.5-1.0.2.el8.x86_64.rpm