Security update for open-vm-tools
| Announcement ID: | SUSE-SU-2025:01778-1 |
|---|---|
| Release Date: | 2025-05-30T13:05:19Z |
| Rating: | moderate |
| References: | |
| Cross-References: | |
| CVSS scores: |
|
| Affected Products: |
|
An update that solves one vulnerability and has two security fixes can now be installed.
Description:
This update for open-vm-tools fixes the following issues:
Update to 12.5.2:
Security fixes:
- CVE-2025-22247: Fixed Insecure file handling (bsc#1243106)
Other fixes:
- Fixed GCC 15 compile time error (bsc#1241938)
- Fixed building with containerd 1.7.25+ (bsc#1237147)
Full changelog:
https://github.com/vmware/open-vm-tools/blob/stable-12.5.2/ReleaseNotes.md https://github.com/vmware/open-vm-tools/blob/stable-12.5.2/open-vm-tools/ChangeLog
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-1778=1
Package List:
-
SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64)
- open-vm-tools-sdmp-12.5.2-4.83.1
- open-vm-tools-debugsource-12.5.2-4.83.1
- libvmtools0-debuginfo-12.5.2-4.83.1
- open-vm-tools-desktop-debuginfo-12.5.2-4.83.1
- open-vm-tools-salt-minion-12.5.2-4.83.1
- open-vm-tools-desktop-12.5.2-4.83.1
- open-vm-tools-debuginfo-12.5.2-4.83.1
- open-vm-tools-sdmp-debuginfo-12.5.2-4.83.1
- libvmtools0-12.5.2-4.83.1
- open-vm-tools-12.5.2-4.83.1