USN-5578-2: Open VM Tools vulnerability
24 August 2022
open-vm-tools could be made to run programs as an administrator.
- open-vm-tools - Open VMware Tools for virtual machines hosted on VMware
USN-5578-1 fixed a vulnerability in Open VM Tools. This update provides
the corresponding update for Ubuntu 16.04 ESM.
Original advisory details:
It was discovered that Open VM Tools incorrectly handled certain requests.
An attacker inside the guest could possibly use this issue to gain root
privileges inside the virtual machine.
- USN-5578-1: open-vm-tools-desktop, open-vm-tools, open-vm-tools-dev, open-vm-tools-sdmp