Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 374599 - app-emulation/vmware-server: multiple vulnerabilities (CVE-2010-{4295,4296,4297},CVE-2011-{1787,2145,2146})
Summary: app-emulation/vmware-server: multiple vulnerabilities (CVE-2010-{4295,4296,42...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo Security
URL:
Whiteboard: ~3 [noglsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2011-07-09 20:48 UTC by GLSAMaker/CVETool Bot
Modified: 2011-10-24 03:54 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2011-07-09 20:48:41 UTC 
CVE-2011-2146 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2146):
  mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware
  Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware
  Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 though 4.1, and VMware ESX 3.0.3
  through 4.1 allows guest OS users to determine the existence of host OS
  files and directories via unspecified vectors.

CVE-2011-2145 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2145):
  mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware
  Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware
  Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 though 4.1, and VMware ESX 3.0.3
  through 4.1, when a Solaris or FreeBSD guest OS is used, allows guest OS
  users to modify arbitrary guest OS files via unspecified vectors, related to
  a "procedural error."

CVE-2011-1787 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1787):
  Race condition in mount.vmhgfs in the VMware Host Guest File System (HGFS)
  in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4,
  VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 though 4.1, and VMware ESX
  3.0.3 through 4.1 allows guest OS users to gain privileges on the guest OS
  by mounting a filesystem on top of an arbitrary directory.

CVE-2010-4297 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4297):
  The VMware Tools update functionality in VMware Workstation 6.5.x before
  6.5.5 build 328052 and 7.x before 7.1.2 build 301548; VMware Player 2.5.x
  before 2.5.5 build 328052 and 3.1.x before 3.1.2 build 301548; VMware Server
  2.0.2; VMware Fusion 2.x before 2.0.8 build 328035 and 3.1.x before 3.1.2
  build 332101; VMware ESXi 3.5, 4.0, and 4.1; and VMware ESX 3.0.3, 3.5, 4.0,
  and 4.1 allows host OS users to gain privileges on the guest OS via
  unspecified vectors, related to a "command injection" issue.

CVE-2010-4296 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4296):
  vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux,
  VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2
  on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not
  properly load libraries, which allows host OS users to gain privileges via
  vectors involving shared object files.

CVE-2010-4295 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4295):
  Race condition in the mounting process in vmware-mount in VMware Workstation
  7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2
  build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x
  before 3.1.2 build 332101 allows host OS users to gain privileges via
  vectors involving temporary files.


Please punt vulnerable versions...
Comment 1 Tim Sammut (RETIRED) gentoo-dev 2011-10-24 03:54:24 UTC 
VMware server has been removed from the tree. Closing noglsa for ~arch only package.