ELBA-2023-6945
- ULN >
- Oracle Linux Errata repository >
- ELBA-2023-6945
ELBA-2023-6945 - open-vm-tools bug fix and enhancement update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2023-11-17 |
Description
[12.2.5-3.0.1]
- Fix spaces in vmware udev rule for scsi devices [Orabug: 24461968]
- Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. [Orabug: 22815019]
- Increase timeout for scsi devices on VMWare guests by adding a udev rule. [Orabug: 21819156]
[12.2.5-3.el8_9]
- ovt-Provide-alternate-method-to-allow-expected-pre-froze.patch [RHEL-2447]
- Resolves: RHEL-2447
([RHEL8.9][ESXi]Latest version of open-vm-tools breaks VM backups)
[12.2.5-2.el8_9]
- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [bz#2236543]
- Resolves: bz#2236543
(CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-8])
[12.2.5-1]
- Rebase to open-vm-tools 12.2.5 [bz#2214861]
- Resolves: bz#2214861
([ESXi][RHEL8]open-vm-tools version 12.2.5 has been released - please rebase)
- Resolves: bz#2216415
([ESXi][RHEL8] URL in service unit files are started from http instead of https)
[12.2.0-3]
- ovt-Remove-some-dead-code.patch [bz#2215563]
- Resolves: bz#2215563
([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-8])
[12.2.0-1]
- Rebase to open-vm-tools 12.2.0 [bz#2177068]
- Resolves: bz#2177068
([ESXi][RHEL8]open-vm-tools version 12.2.0 has been released - please rebase)
[12.1.5-1]
- Rebase to open-vm-tools 12.1.5 [bz#2150188]
- Resolves: bz#2150188
(ESXi][RHEL8]Open-vm-tools release 12.1.5 has been released - please rebase)
[12.1.0-1]
- Rebase to open-vm-tools 12.1.0
- Resolves: bz#2121196
([ESXi][RHEL8]Open-vm-tools release 12.1.0 has been released - please rebase)
[12.0.5-2]
- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119284]
- Resolves: bz#2119284
(CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-8.7.0])
[12.0.5-1]
- Rebase to open-vm-tools 12.0.5 [bz#2090273]
- Resolves: bz#2090273
([ESXi][RHEL8]Open-vm-tools release 12.0.5 has been released - please rebase)
[12.0.0-1]
- Rebase to open-vm-tools 12.0.0 [bz#2061189]
- Resolves: bz#2061189
([ESXi][RHEL8]Open-vm-tools release 12.0.0 has been released - please rebase)
[11.3.5-1]
- Rebase to open-vm-tools 11.3.5 [bz#2008244]
- Resolves: bz#2008244
([ESXi][RHEL8]Open-vm-tools release 11.3.5 has been released - please rebase)
[11.3.0-1.el8]
- Rebase to open-vm-tools 11.3.0 [bz#1974468]
- Resolves: bz#1974468
([ESXi][RHEL8]Open-vm-tools release 11.3.0 has been released - please rebase)
[11.2.5-2.el8]
- ovt-Fix-a-memory-leak-reported-by-a-partner-from-their-C.patch [bz#1935807]
- Resolves: bz#1935807
([ESXi][RHEL-8.5][open-vm-tools] Coverity detected an important defect in open-vm-tools-11.2.5 rebase)
[11.2.5-1.el8]
- Rebase to 11.2.5 [bz#1916561]
([ESXi][RHEL8.5]Open-vm-tools update release 11.2.5 has been released)
[11.2.0-2.el8]
- ovt-Fix-memory-leaks.patch [bz#1896804]
- Resolves: bz#1896804
([ESXi][open-vm-tools] Coverity detected important defects in open-vm-tools-11.2.0 rebase)
[11.2.0-1.el8]
- Rebase to 11.2.0 [bz#1890831]
- Resolves: bz#1890831
([ESXi][RHEL8]Rebase open-vm-tools to 11.2.0 for 8.4)
[11.1.5-1.el8]
- Rebase to 11.1.5 [bz#1870781]
- Resolves: bz#1870781
([ESXi][RHEL8]Rebase open-vm-tools to 11.1.5 for 8.4)
[11.1.0-2.el8]
- Remove net-tools dependency [bz#1849459]
- Resolves: bz#1849459
([ESXi][RHEL8]Incorporate SDMP related fixes and removal of net-tools dependency)
[11.1.0-1.el8]
- Rebase to 11.1.0 [bz#1806677]
- Added open-vm-tools-sdmp package [bz#1833157)
- Resolves: bz#1806677
([ESXi][RHEL8]Rebase open-vm-tools to 11.1.0 for RHEL 8.3)
- Resolves: bz#1833157
([ESXi][RHEL8]Add new open-vm-tools-sdmp package for RHEL 8.3)
[11.0.5-3.el8]
- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1811729]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1811729]
- ovt-add-appinfo-plugin.patch [bz#1809751]
- Resolves: bz#1809751
([ESXi][RHEL8.2.1]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1811729
([ESXi][RHEL8.2.1]open-vm-tools coverity scan issue)
[11.0.5-1.el8]
- Rebase to 11.0.5 (bz#1798285)
- Resolves: bz#1798285
([ESXi][RHEL8.2.1]Rebase open-vm-tools to 11.0.5 for 8.2.1)
[11.0.0-4.el8]
- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1800812]
- Resolves: bz#1800812
([ESXi][RHEL8]Log spew '[ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name)
[11.0.0-3.el8]
- ovt-Address-Coverity-issues-reported-in-bora-lib-file-fi.patch [bz#1769881]
- ovt-Fix-a-potential-NULL-pointer-dereference-in-the-vmba.patch [bz#1769881]
- ovt-Address-two-Coverity-reported-issues-in-hostinfoPosi.patch [bz#1769881]
- ovt-Fix-a-resource-leak-issue-in-deployPkg.patch [bz#1769881]
- Resolves: bz#1769881
([ESXi][RHEL8.2]Important issues found by covscan in 'open-vm-tools-11.0.0-2.el8' package)
[11.0.0-1.el8]
- Rebase to 11.0.0 [bz#1754658]
- Resolves: bz#1754658
(Rebase open-vm-tools to 11.0 for 8.2.0)
- Resolves: bz#1760891
(Need to backport some severe memory leak fixes from upstream)
[10.3.10-3.el8]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1602648]
- ovt-Fix-memory-leak-in-GetFormattedCommandLine-function-.patch [bz#1602648]
- ovt-Fix-a-leak-if-VGAuth-setup-fails.-Coverity-issue.patch [bz#1602648]
- ovt-Fix-minor-leak-in-FileRotateByRenumber-Coverity-scan.patch [bz#1602648]
- ovt-Fix-memory-leak-in-SNEBuildHash-function.patch [bz#1602648]
- ovt-Fix-Coverity-reported-issues-in-i18n.c-code-VMTools-.patch [bz#1602648]
- ovt-Fix-a-memory-leak-in-the-unicode-library.patch [bz#1602648]
- ovt-Fix-a-trivial-Coverity-reported-memory-leak-in-vgaut.patch [bz#1602648]
- ovt-Fixes-for-few-leaks-and-improved-error-handling.patch [bz#1602648]
- ovt-Fix-Coverity-reported-double-memory-free-errors.patch [bz#1602648]
- ovt-Fix-a-trivial-Coverity-reported-memory-leak.patch [bz#1602648]
- ovt-Fix-RH-Covscan-Coverity-reported-memory-leaks-in-too.patch [bz#1602648]
- ovt-Fix-Using-uninitialized-value-issue-reported-by-Cove.patch [bz#1602648]
- ovt-copyPasteCompatX11.c-code-generating-unnecessary-Cov.patch [bz#1602648]
- ovt-Fix-a-Coverity-issue-reported-in-vgauth-serviceImpl-.patch [bz#1602648]
- ovt-Fix-two-coverity-issues-reported-by-a-customer.patch [bz#1602648]
- Resolves: bz#1602648
([ESXi][RHEL8]Please review important issues found by covscan in 'open-vm-tools-10.2.5-2.el8+7' package)
[10.3.10-2]
- Rebase to 10.3.10 [bz#1702784]
- Resolves: bz#1702784
(Rebase open-vm-tools to 10.3.10)
[10.3.0-2.el8]
- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1660713]
- Resolves: bz#1660713
([ESXi][RHEL8.0]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
[10.3.0-1]
- Rebase to 10.3.0 [bz#1626578]
- Resolves: bz#1626578
([ESXi][RHEL8]Rebase open-vm-tools to 10.3.0)
[10.2.5-2]
- Updated RHEL version
- Resolves: bz#1527233
([ESXi][RHEL7.5]Rebase open-vm-tools to 10.2.5)
[10.2.5-2]
- Use tirpc for Fedora 28 onwards.
[10.2.5-1]
- Package new upstream version open-vm-tools-10.2.5-8068406 (RHBZ#1431376).
- Added use-tirpc.patch to use libtirpc instead of deprecated Sun RPC.
- Removed wayland-crash.patch which is no longer needed.
[10.2.0-5]
- Rebuild for ICU 61.1
[10.2.0-4]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
[10.2.0-3]
- Patch for a Wayland related crash in the desktopEvents plugin (RHBZ#1526952).
- gdk_set_allowed_backends() is available in version 3.10 and later only.
[10.2.0-2]
- Build with gtk3 only on newer distros.
[10.2.0-1]
- Package new upstream version open-vm-tools-10.2.0-7253323.
- Remove the patches that are no longer needed.
- New version builds with gtk3 by default.
- Package vmware-user symlink in desktop.
- Add a new test package for test utilities.
- Pick a fix to a conditional from Miroslav Vadkerti
[10.1.10-4]
- Rebuild for ICU 60.1
[10.1.10-3]
- Replaced 'net-tools' dependency with 'iproute' (RHBZ#1496134).
- Added resolutionKMS-wayland-2.patch with some new fixes.
[10.1.10-2]
- Bump and rebuild for an rpm signing issue
[10.1.10-1]
- Package new upstream version open-vm-tools-10.1.10-6082533.
- Remove the patches that are no longer needed.
[10.1.5-7]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
[10.1.5-6]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
[10.1.5-5]
- Fix /tmp race conditions in libDeployPkg (CVE-2015-5191).
[10.1.5-4]
- ResolutionKMS patch for Wayland (RHBZ#1292234).
[10.1.5-3]
- Need to add xmlsec1-openssl dependency explicitly.
[10.1.5-2]
- Use 0644 permissions for udev rules file.
[10.1.5-1]
- Package new upstream version open-vm-tools-10.1.5-5055683 (RHBZ#1408959).
[10.1.0-1]
- Package new upstream version open-vm-tools-10.1.0-4449150 (RHBZ#1408959).
- Remove patches that are no longer needed.
- Build with --enable-xmlsec1 to avoid dependency on xerces-c and xml-security-c.
- Replace _prefix/lib/udev/rules.d/ with _udevrulesdir macro.
[10.0.5-10]
- sysmacros patch for glibc-2.25 (RHBZ#1411807).
- vgauth patch for openssl-1.1.0.
[10.0.5-9]
- udev rules patch for longer SCSI timeouts (RHBZ#1214347).
[10.0.5-8]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
[10.0.5-5]
- vm-support script needs lspci from pciutils (RHBZ#1388766).
[10.0.5-4]
- Patch for HGFS stale caching issues (RHBZ#1342181).
[10.0.5-3]
- Use systemd-detect-virt to detect VMware platform (RHBZ#1251656).
[10.0.5-2]
- Obsolete open-vm-tools-deploypkg because its not needed for v10.x.
[10.0.5-1]
- Package new upstream version open-vm-tools-10.0.5-3227872.
- Add a patch for fixing GCC 6 build issue (RHBZ#1305108).
- Replace kill-werror.patch with no-unused-const.patch.
[10.0.0-12]
- Bump and rebuild.
[10.0.0-11]
- Kill -Werror with fire (RHBZ#1305108).
[10.0.0-10]
- rebuild for ICU 57.1
[10.0.0-9]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
[10.0.0-8]
- rebuild for ICU 56.1
[10.0.0-7]
- Added a missing output redirection
[10.0.0-6]
- Setup Shared Folders mount point when 'vmhgf-fuse -e' is success
[10.0.0-5]
- Setup and teardown Shared Folders mount point on VMs running
on VMware Workstation or VMware Fusion.
[10.0.0-4]
- vmhgfs-fuse needs 'fusermount' from 'fuse'
[10.0.0-3]
- Replace -std=c++11 with -std=gnu++11 to get 'linux' definitions work
in order to fix the build issue,
https://kojipkgs.fedoraproject.org//work/tasks/4823/11274823/build.log
- Removed unused definitions for CFLAGS and CXXFLAGS
[10.0.0-2]
- Add -std=c++11 to CXXFLAGS for fixing the build issue,
https://kojipkgs.fedoraproject.org//work/tasks/3685/11273685/build.log
[10.0.0-1]
- Package new upstream version open-vm-tools-10.0.0-3000743
[9.10.2-2]
- Add license macro.
- Remove initscripts requirement (#1226369).
- Delete mount.vmhgfs instead of excluding from packaging, so the debug
information is not included in the package (#1190540).
- Be more explicit with configuration files, newer mock complains of files being
listed twice.
[9.10.2-1]
- Package new upstream version open-vm-tools-9.10.2-2822639
- Removed the patches that are no longer needed
[9.10.0-5]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
[9.10.0-4]
- Claim ownership for /etc/vmware-tools directory
[9.10.0-3]
- Put Fedora 23 specific fix under a conditional, so that the change
can be backported to other branches easily if required.
[9.10.0-2]
- F23 has split gdk-pixbuf2-devel >= 2.31.3-5 into 3 packages, gdk-pixbuf2-devel,
gdk-pixbuf2-modules-devel, and gdk-pixbuf2-xlib-devel. gtk2-devel does not depend
on gdk-pixbuf2-xlib-devel. Therefore, we need to pull in gdk-pixbuf2-xlib-devel
dependency ourselves.
[9.10.0-1]
- Package new upstream version open-vm-tools-9.10.0-2476743
- New version requires adding a new service vgauthd
- Removed old patches that are no longer needed
- Fix (asm_x86.patch) for correct GCC version check
- Fix (strerror_r.patch) for picking GNU signature of strerror_r
- Fix (toolboxcmd.patch) for compiling toolboxcmd-shrink.c with gcc 5.0.1
[9.4.6-6]
- Added a patch for missing NetIpRouteConfigInfo (BZ#1189295)
[9.4.6-5]
- rebuild for ICU 54.1
[9.4.6-4]
- Rebuild for new procps-ng version.
[9.4.6-3]
- rebuild for ICU 53.1
[9.4.6-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
[9.4.6-1]
- Package new upstream version open-vm-tools-9.4.6-1770165
- Added 'autoreconf -i' and its build dependencies (autoconf, automake and libtool)
to generate configure script, this is required for version 9.4.6 as it does not
have configure script bundled in the tar
- Fix (sizeof_argument.patch) for bad sizeof argument error
[9.4.0-10]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
[9.4.0-9]
- Removed unnecessary package dependency on 'dbus'
- Moved 'vm-support' script to /usr/bin
- Added a call to 'tools.set.version' RPC to inform VMware
platform when open-vm-tools has been uninstalled
[9.4.0-8]
- Add missing package dependency on 'which' (BZ#1045709)
[9.4.0-7]
- Add -D_DEFAULT_SOURCE to suppress warning as suggested in
https://sourceware.org/bugzilla/show_bug.cgi?id=16632
[9.4.0-6]
- Add missing package dependencies (BZ#1045709, BZ#1077320)
[9.4.0-5]
- Fix FTBFS g_info redefine (RHBZ #1063847)
[9.4.0-4]
- rebuild for new ICU
[9.4.0-3]
- Only build on x86-64 for RHEL 7 (RHBZ#1054608).
[9.4.0-2]
- Rebuild for procps SONAME bump.
[9.4.0-1]
- Package new upstream version open-vm-tools-9.4.0-1280544.
- Added CUSTOM_PROCPS_NAME=procps and -Wno-deprecated-declarations
for version 9.4.0.
[9.2.3-11]
- Added copyright and license text.
- Corrected summary for all packages.
[9.2.3-10]
- Added options for hardening build (bug 990549).
- Excluded unwanted file mount.vmhgfs from packaging (bug 990547).
- Removed deprecated key 'Encoding' from 'Desktop Entry' (bug 990552).
[9.2.3-9]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
[9.2.3-8]
- RHEL 7 now includes libdnet, so re-enable it.
[9.2.3-6]
- +BR gcc-c++. If this is missing it fails to build.
- On RHEL, disable libdnet.
[9.2.3-5]
- Renamed source file open-vm-tools.service -> vmtoolsd.service
to match it with the service name.
[9.2.3-4]
- Bumped the release to pick the new service definition with
no restart directive.
[9.2.3-3]
- open-vm-tools-9.2.3 require glib-2.14.0.
[9.2.3-2]
- Bumped the release to pick the new service definition.
[9.2.3-1]
- Package new upstream version open-vm-tools-9.2.3-1031360.
- Removed configure options CUSTOM_PROCPS_NAME (for libproc) and
-Wno-deprecated-declarations as these have been addressed in
open-vm-tools-9.2.3-1031360.
[9.2.2-12]
- Removed %defattr and BuildRoot.
- Added ExclusiveArch.
- Replaced /usr/sbin/ldconfig with /sbin/ldconfig.
[9.2.2-11]
- Removed the conditional steps for old versions of Fedora and RHEL.
[9.2.2-10]
- Addressed formal review comments from Simone Caronni.
- Removed %check section because 'make check' brings font file back.
[9.2.2-9]
- Removed rm command in %check section.
- Remove blank character at the beginning of each changelog line.
[9.2.2-8]
- Removed FreeSans.ttf font file from packaging.
- Added 'rm' command to remove font file in %check section because
'make check' adds it back.
- Added doxygen dependency back.
[9.2.2-7]
- Applied patch from Simone for removal of --docdir option from configure.
- Removed unnecessary --enable-docs option from configure.
- Removed doxygen dependency.
[9.2.2-6]
- Replaced vmtoolsd with a variable.
- Changed summary for subpackages to be more specific.
- Removed drivers.txt file as we don't really need it.
- Fixed vmGuestLib ownership for devel package.
- Removed systemd-sysv from Requires for Fedora 18+ and RHEL 7+.
- Made all 'if' conditions consistent.
[9.2.2-5]
- Added RHEL 5/6 init script.
- Renamed SysV init script / systemd service file to vmtoolsd.
- Fixed ownership of files from review.
- Moved api documentation in devel subpackage.
- Removed static libraries.
[9.2.2-4]
- Applied part of review fixes patch from Simone Caronni for systemd setup.
- Replaced tabs with spaces all over.
[9.2.2-3]
- Applied review fixes patch from Simone Caronni.
- Added missing *.a and *.so files for devel package.
- Removed unnecessary *.la plugin files from base package.
[9.2.2-2]
- Modified SPEC to follow the conventions and guidelines.
- Addressed review comments from Mohamed El Morabity.
- Added systemd script.
- Verified and built the RPMS for Fedora 18.
- Fixed rpmlint warnings.
- Split the UX components in a separate package for desktops.
- Split the help files in a separate package for help.
- Split the guestlib headers in a separate devel package.
[9.2.2-1]
- Initial SPEC file to build open-vm-tools for Fedora 17.
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
