Date: Tue, 13 Jun 2023 23:39:45 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 271986] emulators/open-vm-tools: update to 12.2.5 Message-ID: <bug-271986-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D271986 Bug ID: 271986 Summary: emulators/open-vm-tools: update to 12.2.5 Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: garga@FreeBSD.org Reporter: jwolfe@vmware.com Assignee: garga@FreeBSD.org Flags: maintainer-feedback?(garga@FreeBSD.org) open-vm-tools 12.2.5 was released on June 13, 2023. There are no new features in the open-vm-tools 12.2.5 release. This is primarily a maintenance release that addresses a single critical problem: * Address CVE-2023-20867 announced in https://www.vmware.com/security/advisories/VMSA-2023-0013.html For complete details, see: https://github.com/vmware/open-vm-tools/releases/tag/stable-12.2.5 Release Notes are available at: https://github.com/vmware/open-vm-tools/blob/stable-12.2.5/ReleaseNotes.md The granular changes that have gone into the 12.2.5 release are in the ChangeLog at: https://github.com/vmware/open-vm-tools/blob/stable-12.2.5/open-vm-tools/Ch= angeLog Patches applicable to previous open-vm-tools releases are available at https://github.com/vmware/open-vm-tools/tree/CVE-2023-20867.patch Since FreeBSD typically does not build the vgauth service, the current open-vm-tools and open-vm-tools-nox11 are not affected by CVE-2023-20867.=20 However you may want to update to 12.2.5 for FreeBSD customers that may ena= ble the vgauth service when building from /usr/ports. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-271986-7788>