Security update for open-vm-tools

Announcement ID: SUSE-SU-2017:0705-1
Rating: moderate
References:
Cross-References:
CVSS scores:
Affected Products:
  • SLES for SAP Applications 11-SP4
  • SUSE Linux Enterprise Server 11 SP4

An update that solves one vulnerability and has 13 security fixes can now be installed.

Description:

This update for open-vm-tools to 10.1.0 stable brings features, fixes bugs and security issues:

  • New vmware-namespace-cmd command line utility
  • GTK3 support
  • Common Agent Framework (CAF)
  • Guest authentication with xmlsec1
  • Sub-command to push updated network information to the host on demand
  • Fix for quiesced snapshot failure leaving guest file system quiesced (bsc#1006796)
  • Fix for CVE-2015-5191 (bsc#1007600)
  • Report SLES for SAP 12 guest OS as SLES 12 (bsc#1013496)
  • Add udev rule to increase VMware virtual disk timeout values (bsc#994598)
  • Fix vmtoolsd init script to run vmtoolsd in background (bsc#971031)
  • Fix copy-n-paste and drag-n-drop regressions (bsc#978424)
  • Add new vmblock-fuse.service
  • Fix a suspend with systemd issue (bsc#913727)
  • ESXi Serviceability
  • GuestInfo Enhancements
  • Compatibility with all supported versions of VMware vSphere, VMware Workstation 12.0 and VMware Fusion 8.0.

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  • SUSE Linux Enterprise Server 11 SP4
    zypper in -t patch slessp4-open-vm-tools-13024=1
  • SLES for SAP Applications 11-SP4
    zypper in -t patch slessp4-open-vm-tools-13024=1

Package List:

  • SUSE Linux Enterprise Server 11 SP4 (x86_64 i586)
    • libvmtools0-10.1.0-7.1
    • open-vm-tools-desktop-10.1.0-7.1
    • open-vm-tools-10.1.0-7.1
  • SLES for SAP Applications 11-SP4 (x86_64)
    • libvmtools0-10.1.0-7.1
    • open-vm-tools-desktop-10.1.0-7.1
    • open-vm-tools-10.1.0-7.1

References: