[ALSA-2023:5312] Important: open-vm-tools security update
Type:
security
Severity:
important
Release date:
2023-09-21
Description:
The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fix(es): * open-vm-tools: SAML token signature bypass (CVE-2023-20900) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
x86_64 open-vm-tools-desktop-12.1.5-2.el8_8.3.alma.1.x86_64.rpm 5e5ad614aa245fb589c7dee2b05ab8592915794649c724a0d56daafadda282c1
x86_64 open-vm-tools-12.1.5-2.el8_8.3.alma.1.x86_64.rpm 60e749684145526c0e5c7900472724ba5048766bcb8ed60681e173b6bc2c6099
x86_64 open-vm-tools-sdmp-12.1.5-2.el8_8.3.alma.1.x86_64.rpm 69fd6b6985db86dae0456bdf9795050a9059a47ff8049371199025ea91b987cb
x86_64 open-vm-tools-salt-minion-12.1.5-2.el8_8.3.alma.1.x86_64.rpm c2dbb0e9073681db10b1b4f042ee2a965fde20574084d63ae0cedec854356547
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.