[FFE] open-vm-tools 12.3.0 for Mantic
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
open-vm-tools (Ubuntu) |
Fix Released
|
High
|
Mitchell Dzurick |
Bug Description
[FFE]
12.2.5 -> 12.3.0
Ultimately this change seems relatively innocent. There were a ton of changes
to common files that don’t relate to open-vm-tools that I excluded in this review.
This change should be a sync, and I am comfortable with going through with the sync.
The notable changes are:
- A CVE fix is included
- New feature to allow pre-frozen image
- New feature to allow guest to support host verification with SAML tokens
- Removes the use of gdk-pixbuf-xlib
- Not very familiar with this utility, git commit says required by Unity so
maybe an issue for our derivative distributions that use Unity?
- New guest capability to support host verification of SAML tokenchangelog
- Exclude antrea/calico NIC pattern
Full list of Changes
I created a list of functional changes below by going through and removing
anything that was along the lines of “Change to common {source||header}*”,
“Inclusive Terminology”, “copyright update”, there were a lot of these types of
changes littered throughout the changelog.
Functional/bugfix ChangeLog:
- Allow only X509 certs to verify the SAML token signature.
- Addresses CVE-2023-20900
- Allow pre-Windows 2000 style user logon for Linux Guests.
- Fix build problems with grpc
- Enable hostVerfied SAML token feature in Tools.
- Fix VThreadBase_
- svtminion scripts v1.6 fixes for salt-minion release 3006.0
- Provide alternate method to allow (expected) pre-frozen filesystems when
taking a quiesced snapshot.
- New feature to allow pre-fozen filesystems
- Need to edit tools.conf to enable this feature, set to false by default
- Not worried since new feature is disabled by default, but it would be
nice to atleast test this feature
- Removing appUtil library from open-vm-tools.
- Removes use of gdk-pixbuf-xlib
- gdk-pixbuf-xlib is current present in Jammy/Lunar/Mantic
- Remove some dead code.
- Removes VixToolsCheckIf
- Deprecated in
https:/
- svtminion scripts update for salt 3006 release
- Introduce the new CAP_HOST_
- Adds the guest capability to support host verification of SAML token
- Improve POSIX guest identification
- Just checks if /usr/bin/
before trying to use it, not worried about this change
- Record the usage of VMware Tools version 12.2.5 in vm_tools_version.h
- Record the GA release of VMware Tools 12.2.0.
- Add UNMANAGED InstallStatus value for components
- lib/file: Fix timetools breakage to use memset
- Add antrea and calico interface pattern to GUESTINFO_
- Excludes antrea/calico IP patterns to not clobber k8s IPs.
- lib/file: Improve File_SetTimes
- Remove SSL_NewContext() declaration from sslDirect.h
- Bump the VMware Tools version to 12.3.0 in the "devel" branch.
CVE References
tags: | added: server-todo |
Changed in open-vm-tools (Ubuntu): | |
assignee: | nobody → Bryce Harrington (bryce) |
status: | New → Triaged |
importance: | Undecided → High |
Changed in open-vm-tools (Ubuntu): | |
assignee: | Bryce Harrington (bryce) → Mitchell Dzurick (mitchdz) |
description: | updated |
summary: |
- open-vm-tools 12.3.0 has been released + [FFE] open-vm-tools 12.3.0 for Mantic |
Completed in Debian, if you can please FFE (we'd SRU via MRE anyway) and carry over to mantic.