open-vm-tools: Security fixes CVE-2023-34059 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Yi Zhao <yi.zhao@windriver.com>	2024-10-28 16:47:41 +0800
committer	Armin Kuster <akuster808@gmail.com>	2024-12-08 14:39:17 -0500
commit	5782095b7bb750250651837751609a9945ddff57 (patch)
tree	af9025d791d3f6c169d82df703b564798d8624c1 /meta-python/recipes-devtools/python/python3-smbus2_0.4.1.bb
parent	33eb562e382d0c90fc6574c3de2fff3e79a414cf (diff)
download	meta-openembedded-5782095b7bb750250651837751609a9945ddff57.tar.gz

open-vm-tools: Security fixes CVE-2023-34059

CVE-2023-34059: open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs. Reference: https://nvd.nist.gov/vuln/detail/CVE-2023-34059 Patch from: https://github.com/vmware/open-vm-tools/blob/CVE-2023-34059.patch/CVE-2023-34059.patch Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-smbus2_0.4.1.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: