Описание
Security update for open-vm-tools
This update for open-vm-tools fixes the following issues:
- Updated to version 12.1.0 (build 20219665) (bsc#1202733):
- CVE-2022-31676: Fixed an issue that could allow unprivileged users inside a virtual machine to escalate privileges (bsc#1202657).
Список пакетов
SUSE Linux Enterprise Server 12 SP4-LTSS
libvmtools0-12.1.0-4.45.1
open-vm-tools-12.1.0-4.45.1
open-vm-tools-desktop-12.1.0-4.45.1
SUSE Linux Enterprise Server 12 SP5
libvmtools0-12.1.0-4.45.1
open-vm-tools-12.1.0-4.45.1
open-vm-tools-desktop-12.1.0-4.45.1
open-vm-tools-sdmp-12.1.0-4.45.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libvmtools0-12.1.0-4.45.1
open-vm-tools-12.1.0-4.45.1
open-vm-tools-desktop-12.1.0-4.45.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libvmtools0-12.1.0-4.45.1
open-vm-tools-12.1.0-4.45.1
open-vm-tools-desktop-12.1.0-4.45.1
open-vm-tools-sdmp-12.1.0-4.45.1
SUSE OpenStack Cloud 9
libvmtools0-12.1.0-4.45.1
open-vm-tools-12.1.0-4.45.1
open-vm-tools-desktop-12.1.0-4.45.1
SUSE OpenStack Cloud Crowbar 9
libvmtools0-12.1.0-4.45.1
open-vm-tools-12.1.0-4.45.1
open-vm-tools-desktop-12.1.0-4.45.1
Ссылки
- Link for SUSE-SU-2022:2935-1
- E-Mail link for SUSE-SU-2022:2935-1
- SUSE Security Ratings
- SUSE Bug 1202657
- SUSE Bug 1202733
- SUSE CVE CVE-2022-31676 page
Описание
VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP4-LTSS:libvmtools0-12.1.0-4.45.1
SUSE Linux Enterprise Server 12 SP4-LTSS:open-vm-tools-12.1.0-4.45.1
SUSE Linux Enterprise Server 12 SP4-LTSS:open-vm-tools-desktop-12.1.0-4.45.1
SUSE Linux Enterprise Server 12 SP5:libvmtools0-12.1.0-4.45.1
Ссылки
- CVE-2022-31676
- SUSE Bug 1202657
- SUSE Bug 1202733
- SUSE Bug 1202834
- SUSE Bug 1202995
- SUSE Bug 1204044
- SUSE Bug 1205471