open-vm-tools security update

2022-09-0600:00:00

linux.oracle.com

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

JSON

[11.3.5-1.0.1.el8_6.1]

Fix spaces in vmware udev rule for scsi devices [Orabug: 24461968]
Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. [Orabug: 22815019]
Increase timeout for scsi devices on VMWare guests by adding a udev rule. [Orabug: 21819156]
[11.3.5-1.el8_6.1]
ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119283]
Resolves: bz#2119283
(CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-8.6.0.z])

OSVersionArchitecturePackageVersionFilename
oracle linux8srcopen-vm-tools< 11.3.5-1.0.1.el8_6.1open-vm-tools-11.3.5-1.0.1.el8_6.1.src.rpm
oracle linux8x86_64open-vm-tools< 11.3.5-1.0.1.el8_6.1open-vm-tools-11.3.5-1.0.1.el8_6.1.x86_64.rpm
oracle linux8x86_64open-vm-tools-desktop< 11.3.5-1.0.1.el8_6.1open-vm-tools-desktop-11.3.5-1.0.1.el8_6.1.x86_64.rpm
oracle linux8x86_64open-vm-tools-sdmp< 11.3.5-1.0.1.el8_6.1open-vm-tools-sdmp-11.3.5-1.0.1.el8_6.1.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	8	src	open-vm-tools	< 11.3.5-1.0.1.el8_6.1	open-vm-tools-11.3.5-1.0.1.el8_6.1.src.rpm
oracle linux	8	x86_64	open-vm-tools	< 11.3.5-1.0.1.el8_6.1	open-vm-tools-11.3.5-1.0.1.el8_6.1.x86_64.rpm
oracle linux	8	x86_64	open-vm-tools-desktop	< 11.3.5-1.0.1.el8_6.1	open-vm-tools-desktop-11.3.5-1.0.1.el8_6.1.x86_64.rpm
oracle linux	8	x86_64	open-vm-tools-sdmp	< 11.3.5-1.0.1.el8_6.1	open-vm-tools-sdmp-11.3.5-1.0.1.el8_6.1.x86_64.rpm