Red Hat Product Errata RHSA-2023:7264 - Security Advisory
Issued:
2023-11-15
Updated:
2023-11-15

RHSA-2023:7264 - Security Advisory

Synopsis

Important: open-vm-tools security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for open-vm-tools is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines.

Security Fix(es):

  • open-vm-tools: SAML token signature bypass (CVE-2023-34058)
  • open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper (CVE-2023-34059)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64

Fixes

  • BZ - 2246080 - CVE-2023-34058 open-vm-tools: SAML token signature bypass
  • BZ - 2246096 - CVE-2023-34059 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
open-vm-tools-12.1.5-2.el8_8.4.src.rpm SHA-256: 6075c159dae6e7bdfc521897dd026c7d308bbb5a29e7962d6797b841137c6153
x86_64
open-vm-tools-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: e71b031f7254160b510b50db7beea2e03796f81dea75f941acc06dde8fff28b8
open-vm-tools-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 8286889c988f598984c3e6fb7f5880cc5a773c933a28ea297765a7dbe3abc545
open-vm-tools-debugsource-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 37ab123eb7e05f8968f0b55dc7d98c620b1a4b2408256ed1dec414e5b38c3382
open-vm-tools-desktop-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 7a657207f02667f91620c74a7d95b0eeada912ebce0c5e3b02a218c54e4caf1d
open-vm-tools-desktop-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 7e7a2cafadd4474ca4e76debbc41e37abb27439d000660988bdd7f3f7c49bee6
open-vm-tools-salt-minion-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 6c35c4e36a2137f1bcab14df3bba4b8bb4f847516f6e9446401043a114e3185e
open-vm-tools-sdmp-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 73d4b2a45666a659a93c7aa81d24c68580771a17da182287ca6f6d3e955036f1
open-vm-tools-sdmp-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: be4b4a54d783391089e6a0946014fc853b40a51eebbcb008893de7f72b32f1c3
open-vm-tools-test-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: bfd85e90a3fe0bc77357c428d02a0e46d4c5da6615e0dab5a4668cda2f486754

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
open-vm-tools-12.1.5-2.el8_8.4.src.rpm SHA-256: 6075c159dae6e7bdfc521897dd026c7d308bbb5a29e7962d6797b841137c6153
x86_64
open-vm-tools-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: e71b031f7254160b510b50db7beea2e03796f81dea75f941acc06dde8fff28b8
open-vm-tools-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 8286889c988f598984c3e6fb7f5880cc5a773c933a28ea297765a7dbe3abc545
open-vm-tools-debugsource-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 37ab123eb7e05f8968f0b55dc7d98c620b1a4b2408256ed1dec414e5b38c3382
open-vm-tools-desktop-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 7a657207f02667f91620c74a7d95b0eeada912ebce0c5e3b02a218c54e4caf1d
open-vm-tools-desktop-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 7e7a2cafadd4474ca4e76debbc41e37abb27439d000660988bdd7f3f7c49bee6
open-vm-tools-salt-minion-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 6c35c4e36a2137f1bcab14df3bba4b8bb4f847516f6e9446401043a114e3185e
open-vm-tools-sdmp-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 73d4b2a45666a659a93c7aa81d24c68580771a17da182287ca6f6d3e955036f1
open-vm-tools-sdmp-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: be4b4a54d783391089e6a0946014fc853b40a51eebbcb008893de7f72b32f1c3
open-vm-tools-test-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: bfd85e90a3fe0bc77357c428d02a0e46d4c5da6615e0dab5a4668cda2f486754

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
open-vm-tools-12.1.5-2.el8_8.4.src.rpm SHA-256: 6075c159dae6e7bdfc521897dd026c7d308bbb5a29e7962d6797b841137c6153
x86_64
open-vm-tools-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: e71b031f7254160b510b50db7beea2e03796f81dea75f941acc06dde8fff28b8
open-vm-tools-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 8286889c988f598984c3e6fb7f5880cc5a773c933a28ea297765a7dbe3abc545
open-vm-tools-debugsource-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 37ab123eb7e05f8968f0b55dc7d98c620b1a4b2408256ed1dec414e5b38c3382
open-vm-tools-desktop-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 7a657207f02667f91620c74a7d95b0eeada912ebce0c5e3b02a218c54e4caf1d
open-vm-tools-desktop-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 7e7a2cafadd4474ca4e76debbc41e37abb27439d000660988bdd7f3f7c49bee6
open-vm-tools-salt-minion-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 6c35c4e36a2137f1bcab14df3bba4b8bb4f847516f6e9446401043a114e3185e
open-vm-tools-sdmp-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: 73d4b2a45666a659a93c7aa81d24c68580771a17da182287ca6f6d3e955036f1
open-vm-tools-sdmp-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: be4b4a54d783391089e6a0946014fc853b40a51eebbcb008893de7f72b32f1c3
open-vm-tools-test-debuginfo-12.1.5-2.el8_8.4.x86_64.rpm SHA-256: bfd85e90a3fe0bc77357c428d02a0e46d4c5da6615e0dab5a4668cda2f486754

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.