Описание
Security update for open-vm-tools
This update for open-vm-tools fixes the following issues:
- CVE-2022-31676: Fixed an issue that could allow unprivileged users inside a virtual machine to escalate privileges (bsc#1202657).
Список пакетов
SUSE Linux Enterprise Server 12 SP2-BCL
libvmtools0-10.2.0-9.9.1
open-vm-tools-10.2.0-9.9.1
open-vm-tools-desktop-10.2.0-9.9.1
Ссылки
- Link for SUSE-SU-2022:2940-1
- E-Mail link for SUSE-SU-2022:2940-1
- SUSE Security Ratings
- SUSE Bug 1202657
- SUSE CVE CVE-2022-31676 page
Описание
VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP2-BCL:libvmtools0-10.2.0-9.9.1
SUSE Linux Enterprise Server 12 SP2-BCL:open-vm-tools-10.2.0-9.9.1
SUSE Linux Enterprise Server 12 SP2-BCL:open-vm-tools-desktop-10.2.0-9.9.1
Ссылки
- CVE-2022-31676
- SUSE Bug 1202657
- SUSE Bug 1202733
- SUSE Bug 1202834
- SUSE Bug 1202995
- SUSE Bug 1204044
- SUSE Bug 1205471