Issued:: 2025-10-07
Updated:: 2025-10-07

RHSA-2025:17509 - Security Advisory

Overview
Updated Packages

Synopsis

Important: open-vm-tools security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for open-vm-tools is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines.

Security Fix(es):

open-vm-tools: Local privilege escalation in open-vm-tools (CVE-2025-41244)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64

Fixes

BZ - 2397752 - CVE-2025-41244 open-vm-tools: Local privilege escalation in open-vm-tools

CVEs

CVE-2025-41244

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
open-vm-tools-12.3.5-2.el8_10.1.src.rpm	SHA-256: c35a136601f32de11534e97f1a690e67a735383144a76f59812973b8d332d95c
x86_64
open-vm-tools-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: e1dc30a5ed5bd35fcc274f8f1341df94788d031243f66fe58b4d43a39373a30a
open-vm-tools-debuginfo-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: e21fff66bfd23eb80171d21d8f8aa862055be036ec14619d67d3a696e5054bb2
open-vm-tools-debugsource-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: 9354584c4da739f502c6ed5f263e94a2864c94b9fd6877bc71ad8f624f757eb3
open-vm-tools-desktop-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: 892a8b3019665c254b7878de1c1d11be3591c0df83c6917713dec125a4002aba
open-vm-tools-desktop-debuginfo-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: ba9c9e5290bc07929570a1a626bc51b85dc7450b54d74d2c56daa5cc7026c7cf
open-vm-tools-salt-minion-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: 10376610c50f224d854d89c044f659d72cf5d22d4d0214a7dbceca6e360c1907
open-vm-tools-sdmp-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: e97c4c2006e441c57ad2536546f1b08f7a675d73d51f4d1a4890a5b0b9bf18d9
open-vm-tools-sdmp-debuginfo-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: c508f001f2d51704f72c92f1531bda0d3994fab822382b06905d2739827dd844
open-vm-tools-test-debuginfo-12.3.5-2.el8_10.1.x86_64.rpm	SHA-256: 98b483842b7d93593fb9a389fc73586948e4cfa04dc318b7ac80b4c98fa4205f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation