MGASA-2017-0354

Source
https://advisories.mageia.org/MGASA-2017-0354.html
Import Source
https://advisories.mageia.org/MGASA-2017-0354.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2017-0354
Related
Published
2017-10-05T20:08:40Z
Modified
2017-09-22T08:50:57Z
Summary
Updated open-vm-tools packages fix security vulnerability
Details

It was discovered that open-vm-tools has multiple /tmp race conditions in the libDeployPkg component, allowing an unprivileged local user in a guest to cause a denial of service through file system manipulation, or, possibly, increase privileges (CVE-2015-5191).

References
Credits

Affected packages

Mageia:6 / open-vm-tools

Package

Name
open-vm-tools
Purl
pkg:rpm/mageia/open-vm-tools?distro=mageia-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.1.5-2.1.mga6

Ecosystem specific

{
    "section": "core"
}