Security update for open-vm-tools
Announcement ID: | SUSE-SU-2017:0702-1 |
---|---|
Rating: | moderate |
References: | |
Cross-References: | |
CVSS scores: |
|
Affected Products: |
|
An update that solves one vulnerability and has six security fixes can now be installed.
Description:
This update for open-vm-tools to 10.1.0 stable brings features, fixes bugs and security issues:
- New vmware-namespace-cmd command line utility
- GTK3 support
- Common Agent Framework (CAF)
- Guest authentication with xmlsec1
- Sub-command to push updated network information to the host on demand
- Fix for quiesced snapshot failure leaving guest file system quiesced (bsc#1006796)
- Fix for CVE-2015-5191 (bsc#1007600)
- Report SLES for SAP 12 guest OS as SLES 12 (bsc#1013496)
- Add udev rule to increase VMware virtual disk timeout values (bsc#994598)
- Fix vmtoolsd init script to run vmtoolsd in background (bsc#971031)
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
SUSE Linux Enterprise Desktop 12 SP2
zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-382=1
-
SUSE Linux Enterprise High Performance Computing 12 SP2
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-382=1
-
SUSE Linux Enterprise Server 12 SP2
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-382=1
-
SUSE Linux Enterprise Server for SAP Applications 12 SP2
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-382=1
Package List:
-
SUSE Linux Enterprise Desktop 12 SP2 (x86_64)
- open-vm-tools-desktop-10.1.0-8.1
- open-vm-tools-debugsource-10.1.0-8.1
- libvmtools0-10.1.0-8.1
- libvmtools0-debuginfo-10.1.0-8.1
- open-vm-tools-debuginfo-10.1.0-8.1
- open-vm-tools-10.1.0-8.1
- open-vm-tools-desktop-debuginfo-10.1.0-8.1
-
SUSE Linux Enterprise High Performance Computing 12 SP2 (x86_64)
- open-vm-tools-desktop-10.1.0-8.1
- open-vm-tools-debugsource-10.1.0-8.1
- libvmtools0-10.1.0-8.1
- libvmtools0-debuginfo-10.1.0-8.1
- open-vm-tools-debuginfo-10.1.0-8.1
- open-vm-tools-10.1.0-8.1
- open-vm-tools-desktop-debuginfo-10.1.0-8.1
-
SUSE Linux Enterprise Server 12 SP2 (x86_64)
- open-vm-tools-desktop-10.1.0-8.1
- open-vm-tools-debugsource-10.1.0-8.1
- libvmtools0-10.1.0-8.1
- libvmtools0-debuginfo-10.1.0-8.1
- open-vm-tools-debuginfo-10.1.0-8.1
- open-vm-tools-10.1.0-8.1
- open-vm-tools-desktop-debuginfo-10.1.0-8.1
-
SUSE Linux Enterprise Server for SAP Applications 12 SP2 (x86_64)
- open-vm-tools-desktop-10.1.0-8.1
- open-vm-tools-debugsource-10.1.0-8.1
- libvmtools0-10.1.0-8.1
- libvmtools0-debuginfo-10.1.0-8.1
- open-vm-tools-debuginfo-10.1.0-8.1
- open-vm-tools-10.1.0-8.1
- open-vm-tools-desktop-debuginfo-10.1.0-8.1
References:
- https://www.suse.com/security/cve/CVE-2015-5191.html
- https://bugzilla.suse.com/show_bug.cgi?id=1006796
- https://bugzilla.suse.com/show_bug.cgi?id=1007600
- https://bugzilla.suse.com/show_bug.cgi?id=1011057
- https://bugzilla.suse.com/show_bug.cgi?id=1013496
- https://bugzilla.suse.com/show_bug.cgi?id=1024200
- https://bugzilla.suse.com/show_bug.cgi?id=971031
- https://bugzilla.suse.com/show_bug.cgi?id=994598