Launchpad CVE tracker

CVE 2023-20867

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

Related bugs and status

CVE-2023-20867 (Candidate) is related to these bugs:

Bug #2028420: Backport open-vm-tools 12.3.5 for jammy, lunar and mantic

		In	Importance	Status
2028420	Backport open-vm-tools 12.3.5 for jammy, lunar and mantic	open-vm-tools (Ubuntu)	Undecided	Fix Released
2028420	Backport open-vm-tools 12.3.5 for jammy, lunar and mantic	open-vm-tools (Ubuntu Jammy)	Undecided	Fix Released
2028420	Backport open-vm-tools 12.3.5 for jammy, lunar and mantic	open-vm-tools (Ubuntu Lunar)	Undecided	Won't Fix
2028420	Backport open-vm-tools 12.3.5 for jammy, lunar and mantic	open-vm-tools (Ubuntu Noble)	Undecided	Fix Released
2028420	Backport open-vm-tools 12.3.5 for jammy, lunar and mantic	open-vm-tools (Ubuntu Mantic)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://www.vmware.com...
CONFIRM: https://security.netap...
MLIST: [debian-lts-announce] ...
DEBIAN: DSA-5493
FEDORA: FEDORA-2023-df375d0634
FEDORA: FEDORA-2023-20b6ac4b6c
FEDORA: FEDORA-2023-9b1a1023ac
MLIST: [oss-security] 2023101...
MLIST: [oss-security] 2023101...

Launchpad.net

CVE 2023-20867

Related bugs and status

Related bugs

References