[Apollo] Advisories Statistics light light Login

RLSA-2023:5313

Security Mirrored from RHSA-2023:5313
Issued at: 2023-09-26
Updated at: 2023-09-26

Synopsis

Important: open-vm-tools security update



Description

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines.

Security Fix(es):

* open-vm-tools: SAML token signature bypass (CVE-2023-20900)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9 x86_64

Fixes

2236542

CVEs

CVE-2023-20900

Affected packages

Rocky Linux 9 x86_64 - AppStream

open-vm-tools-0:12.1.5-1.el9_2.3.src.rpm open-vm-tools-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-debuginfo-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-debugsource-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-desktop-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-desktop-debuginfo-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-salt-minion-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-sdmp-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-sdmp-debuginfo-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-test-0:12.1.5-1.el9_2.3.x86_64.rpm open-vm-tools-test-debuginfo-0:12.1.5-1.el9_2.3.x86_64.rpm