ELSA-2022-6358

ELSA-2022-6358 - open-vm-tools security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2022-09-07

Description


[11.3.5-1.0.1.el9_0.1]
- Fix spaces in vmware udev rule for scsi devices [Orabug: 24461968]
- Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. [Orabug: 22815019]
- Increase timeout for scsi devices on VMWare guests by adding a udev rule. [Orabug: 21819156]

[11.3.5-1.el9_0.1]
- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119285]
- Resolves: bz#2119285
(CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-9.0.0.z])


Related CVEs


CVE-2022-31676

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) open-vm-tools-11.3.5-1.0.1.el9_0.1.src.rpm3774775b7ae7268b8d6fb92217b1b795149b4387691228900cae3c36adda53ed-ol9_aarch64_appstream
open-vm-tools-11.3.5-1.0.1.el9_0.1.aarch64.rpm65af7dca5d27600114012bb839464f8326bb305b2b6afb98433a39d78fcbca3a-ol9_aarch64_appstream
open-vm-tools-desktop-11.3.5-1.0.1.el9_0.1.aarch64.rpm92ea875c3df570ad381de73ef98dfb7b4bbb0ae0b40364cd4203dd29722c6dab-ol9_aarch64_appstream
open-vm-tools-test-11.3.5-1.0.1.el9_0.1.aarch64.rpm5f7b56fa0357e7ed0ee6880c4196e52e9d54799350b9a40e68836e00e70ae88b-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) open-vm-tools-11.3.5-1.0.1.el9_0.1.src.rpm3774775b7ae7268b8d6fb92217b1b795149b4387691228900cae3c36adda53ed-ol9_x86_64_appstream
open-vm-tools-11.3.5-1.0.1.el9_0.1.x86_64.rpm419d81d5dcc6c5c6e9d549d4e1860126b4e8631dfc1ab9982938822ae0bde4a3-ol9_x86_64_appstream
open-vm-tools-desktop-11.3.5-1.0.1.el9_0.1.x86_64.rpm74105f975d8312538ee936bfb48ba09ef8f827729cea0aee1896bf5e3cc0ee21-ol9_x86_64_appstream
open-vm-tools-sdmp-11.3.5-1.0.1.el9_0.1.x86_64.rpm24274f341f935436509284d9d0f2e6bcb08392a69f16fb51f70ef1dda24c413a-ol9_x86_64_appstream
open-vm-tools-test-11.3.5-1.0.1.el9_0.1.x86_64.rpm3d5eada88f4e691078668f6b04cb72c9c414a0325d785f613c09cdc3fa39c31b-ol9_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete