Package "open-vm-tools"

Name: open-vm-tools


This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Open VMware Tools for VMs hosted on VMware (Service Discovery Plugin)

Latest version: 2:12.1.5-3~ubuntu0.22.04.3
Release: jammy (22.04)
Level: updates
Repository: universe


Other versions of "open-vm-tools" in Jammy

Repository Area Version
base main 2:11.3.5-1ubuntu4
base universe 2:11.3.5-1ubuntu4
security main 2:12.1.5-3~ubuntu0.22.04.3
security universe 2:12.1.5-3~ubuntu0.22.04.3
updates main 2:12.1.5-3~ubuntu0.22.04.3

Packages in group

Deleted packages are displayed in grey.


Version: 2:12.1.5-3~ubuntu0.22.04.3 2023-09-13 21:10:19 UTC

  open-vm-tools (2:12.1.5-3~ubuntu0.22.04.3) jammy-security; urgency=medium

  * SECURITY UPDATE: SAML token signature bypass vulnerability
    - debian/patches/CVE-2023-20900.patch: Allow only X509 certs to verify
      the SAML token signature in
    - CVE-2023-20900

 -- Marc Deslauriers <email address hidden> Mon, 11 Sep 2023 14:45:55 -0400

Source diff to previous version
CVE-2023-20900 A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E

Version: 2:12.1.5-3~ubuntu0.22.04.2 2023-07-27 07:07:04 UTC

  open-vm-tools (2:12.1.5-3~ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: authentication bypass vulnerability
    - debian/patches/CVE-2023-20867.patch: Remove some dead code
    - CVE-2023-20867

 -- Nishit Majithia <email address hidden> Tue, 25 Jul 2023 09:39:02 +0530

Source diff to previous version
CVE-2023-20867 A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of

Version: 2:12.1.5-3~ubuntu0.22.04.1 2023-06-01 15:07:24 UTC

  open-vm-tools (2:12.1.5-3~ubuntu0.22.04.1) jammy; urgency=medium

  * Backport recent open-vm-tools release v12.1.5
    (LP: #1998558)
  * d/control: Add libabsl-dev as explicit build-dependency.
    - (Closes #1032305)

 -- Bryce Harrington <email address hidden> Thu, 16 Mar 2023 23:57:03 +0000

Source diff to previous version
1998558 open-vm-tools 12.1.5 has been released
1032305 open-vm-tools: ld reports cannot find -labsl_synchronization when building

Version: 2:12.1.0-1~ubuntu0.22.04.1 2023-01-10 21:07:33 UTC

  open-vm-tools (2:12.1.0-1~ubuntu0.22.04.1) jammy; urgency=medium

  * Backport recent open-vm-tools (LP: #1975767)
    - Fixes issue with "udevadm trigger" affecting all devices
      that can cause unwanted side-effects.
      (LP: #1968354)
    - Adds new binary open-vm-tools-containerinfo that installs the
      vRealize Container Info plugin, which captures and publishes
      information about running containers inside the guest.
    - Adds new binary open-vm-tools-salt-minion that installs the Salt
      Minion plugin for event driven IT automation, remote task execution,
      and configuration management.

 -- Bryce Harrington <email address hidden> Mon, 19 Sep 2022 17:52:55 +0000

Source diff to previous version
1975767 Backport open-vm-tools as MRE for bionic, focal, impish, jammy (October)
1968354 Please do not run udevadm trigger without parameters

Version: 2:11.3.5-1ubuntu4.1 2022-08-24 14:07:12 UTC

  open-vm-tools (2:11.3.5-1ubuntu4.1) jammy-security; urgency=medium

  * SECURITY UPDATE: local privilege escalation
    - debian/patches/CVE-2022-31676.patch: check authorization on incoming
      guestOps requests in open-vm-tools/vgauth/serviceImpl/proto.c.
    - CVE-2022-31676

 -- Marc Deslauriers <email address hidden> Tue, 16 Aug 2022 09:21:12 -0400

CVE-2022-31676 VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege es ...

About   -   Send Feedback to @ubuntu_updates