Bug 32061

Summary: open-vm-tools new security issue CVE-2023-20867
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: All Packagers <pkg-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: nicolas.salguero
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA8TOO
Source RPM: open-vm-tools-12.1.5-2.mga9.src.rpm CVE:
Status comment: Fixed upstream in 12.2.5
Bug Depends on: 32454    
Bug Blocks:    

Description David Walser 2023-06-30 02:37:23 CEST 
RedHat has issued an advisory today (June 29):
https://access.redhat.com/errata/RHSA-2023:3948

The issue is fixed upstream in 12.2.5.

Mageia 8 is also affected.
David Walser 2023-06-30 02:37:37 CEST

Whiteboard: (none) => MGA8TOO
Status comment: (none) => Fixed upstream in 12.2.5

Comment 1 Lewis Smith 2023-06-30 20:01:54 CEST 
Luigi has to date done all the updates for this pkg, but in the absence of him assigning the bug to himself, it goes global!

Assignee: bugsquad => pkg-bugs

Nicolas Salguero 2024-03-12 10:52:05 CET

Depends on: (none) => 32454

Comment 2 Nicolas Salguero 2024-03-14 18:33:57 CET 
Fixed in bug 32454.

Status: NEW => RESOLVED
Resolution: (none) => FIXED
CC: (none) => nicolas.salguero