Oracle Linux 8 ELSA-2023-7265 Critical: Open-VM-Tools Security Update
oracle
November 23, 2023
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
Summary
[12.2.5-3.0.1.1] - Fix CVE-2023-34058 open-vm-tools: SAML token signature bypass - Fix CVE-2023-34059 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper [12.2.5-3.0.1] - Fix spaces in vmware udev rule for scsi devices [Orabug: 24461968] - Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. [Orabug: 22815019] - Increase timeout for scsi devices on VMWare guests by adding a udev rule. [Orabug: 21819156]
SRPMs
https://oss.oracle.com:443/ol8/SRPMS-updates//open-vm-tools-12.2.5-3.0.1.el8_9.1.src.rpm
x86_64
open-vm-tools-12.2.5-3.0.1.el8_9.1.x86_64.rpm open-vm-tools-desktop-12.2.5-3.0.1.el8_9.1.x86_64.rpm open-vm-tools-salt-minion-12.2.5-3.0.1.el8_9.1.x86_64.rpm open-vm-tools-sdmp-12.2.5-3.0.1.el8_9.1.x86_64.rpm
aarch64
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Related CVEs:
CVE-2023-34058
CVE-2023-34059
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!