Mailinglist Archive: opensuse-updates (53 mails)

< Previous Next >
openSUSE-SU-2011:0617-1: important: open-vm-tools
openSUSE Security Update: open-vm-tools
______________________________________________________________________________

Announcement ID: openSUSE-SU-2011:0617-1
Rating: important
References: #673267 #690491
Cross-References: CVE-2011-1681 CVE-2011-1787 CVE-2011-2145
CVE-2011-2146
Affected Products:
openSUSE 11.4
openSUSE 11.3
______________________________________________________________________________

An update that fixes four vulnerabilities is now available.
It includes one version update.

Description:

This update of open-vm-tools fixes the following
vulnerabilities which allowed an attacker to gain root
privileges within the guest system:
- CVE-2011-1681
- CVE-2011-2146
- CVE-2011-1787
- CVE-2011-2145


Patch Instructions:

To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- openSUSE 11.4:

zypper in -t patch libvmtools-devel-4693

- openSUSE 11.3:

zypper in -t patch libvmtools-devel-4693

To bring your system up-to-date, use "zypper patch".


Package List:

- openSUSE 11.4 (i586 x86_64) [New Version: 2011.05.27]:

libvmtools-devel-2011.05.27-0.3.3
libvmtools0-2011.05.27-0.3.3
open-vm-tools-2011.05.27-0.3.3
open-vm-tools-gui-2011.05.27-0.3.3
vmware-guest-kmp-default-2011.05.27_k2.6.37.6_0.5-0.3.3
vmware-guest-kmp-desktop-2011.05.27_k2.6.37.6_0.5-0.3.3

- openSUSE 11.4 (i586):

vmware-guest-kmp-pae-2011.05.27_k2.6.37.6_0.5-0.3.3

- openSUSE 11.3 (i586 x86_64) [New Version: 2011.05.27]:

libvmtools-devel-2011.05.27-0.3.1
libvmtools0-2011.05.27-0.3.1
open-vm-tools-2011.05.27-0.3.1
open-vm-tools-gui-2011.05.27-0.3.1
vmware-guest-kmp-default-2011.05.27_k2.6.34.8_0.2-0.3.1
vmware-guest-kmp-desktop-2011.05.27_k2.6.34.8_0.2-0.3.1

- openSUSE 11.3 (i586):

vmware-guest-kmp-pae-2011.05.27_k2.6.34.8_0.2-0.3.1


References:

http://support.novell.com/security/cve/CVE-2011-1681.html
http://support.novell.com/security/cve/CVE-2011-1787.html
http://support.novell.com/security/cve/CVE-2011-2145.html
http://support.novell.com/security/cve/CVE-2011-2146.html
https://bugzilla.novell.com/673267
https://bugzilla.novell.com/690491


< Previous Next >
This Thread
  • No further messages