CVE-2019-5541 CVE-2019-5540, CVE-2019-5542 https://www.vmware.com/security/advisories/VMSA-2019-0020.html https://www.vmware.com/security/advisories/VMSA-2019-0021.html https://my.vmware.com/de/web/vmware/details?downloadGroup=WKST-1551-LX&productId=799&rPId=39508 Name: VMware-Workstation-Full-15.5.1-15018445.x86_64.bundle Release-Date: 2019-11-12 Build-Number: 15018445 MD5SUM: dfaa7c3b858df839db6d006437142e98 SHA1SUM: c82e66f28fb5cc6fac4c38c55727cc45b916d107 SHA256SUM: 490f8fe8d874c27601c155c1b2c0055ad0d4f14feb32fa9f18643659a147d3c6 Reproducible: Always
VMware Workstation 15.5.1 Pro Release Notes https://docs.vmware.com/en/VMware-Workstation-Pro/15.5/rn/VMware-Workstation-1551-Pro-Release-Notes.html Important Fixes This release of VMware Workstation Pro addresses the following issues: Workstation 15.5.1 Pro addresses an out-of-bounds write vulnerability in the e1000e virtual network adapter. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2019-5541 to this issue. For more information, see VMSA-2019-0021. Workstation 15.5.1 Pro addresses an information disclosure vulnerability in vmnetdhcp. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2019-5540 to this issue. For more information, see VMSA-2019-0021. Workstation 15.5.1 Pro addresses a denial-of-service vulnerability in the RPC handler. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2019-5542 to this issue. For more information, see VMSA-2019-0021. Workstation 15.5.1 Pro resolves TSX Asynchronous Abort (TAA), a speculative-execution vulnerability identified by CVE-2019-11135. For more information, see section 3b in VMSA-2019-0020. Workstation 15.5.1 Pro resolves a regression introduced in Workstation 15.5.0 Pro which causes the Hypervisor-Specific mitigations for L1TF and MDS vulnerabilities to be ineffective. For more information on these mitigations, please see section 3a in VMSA-2019-0008.
Tools : 11.0.0 http://softwareupdate.vmware.com/cds/vmw-desktop/ws/15.5.1/15018445/linux/packages/
Modules : https://github.com/mkubecek/vmware-host-modules/tree/workstation-15.5.1
Ebuilds updated in my overlay: https://github.com/stefantalpalaru/gentoo-overlay I had to double the source size (to over 1 GiB) in order to get the latest macOS ISO images, because they only come in full Workstation PRO archives. That's only if you have one of the "vmware-tools-darwin" or "vmware-tools-darwinPre15" USE flags enabled, of course.
(In reply to Ștefan Talpalaru from comment #4) > Ebuilds updated in my overlay: Thanks! That was quick, once again! Confirm: WORKSFORME. Tested with the 'usual suspects'. > I had to double the source size (to over 1 GiB) Annoyinng, indeed.
@ cam@bluesyrup.com @ orodruinlair@gmail.com @ realnc@gmail.com @ gentoo@sattvik.com Are you still interested to be placed "CC" in future bugs? If so, please be so kind to confirm. I do not want to impose unwanted noise.
(In reply to Manfred Knick from comment #6) > Are you still interested to be placed "CC" in future bugs? Yes. Otherwise I would have removed myself from CC :-)
(In reply to Ștefan Talpalaru from comment #4) > Ebuilds updated in my overlay: > https://github.com/stefantalpalaru/gentoo-overlay > > I had to double the source size (to over 1 GiB) in order to get the latest > macOS ISO images, because they only come in full Workstation PRO archives. > That's only if you have one of the "vmware-tools-darwin" or > "vmware-tools-darwinPre15" USE flags enabled, of course. >>> Unpacking source... >>> Unpacking unlocker-3.0.2.tar.gz to /var/tmp/portage/app-emulation/vmware-workstation-15.5.1.15018445/work >>> Unpacking com.vmware.fusion-15.5.1.15018445.zip.tar to /var/tmp/portage/app-emulation/vmware-workstation-15.5.1.15018445/work >>> Unpacking vmware-systemd-gentoo-02.tgz to /var/tmp/portage/app-emulation/vmware-workstation-15.5.1.15018445/work Extracting VMware Installer...done. mv: cannot stat 'payload/VMware Fusion.app/Contents/Library/isoimages/darwinPre15.iso': No such file or directory * ERROR: app-emulation/vmware-workstation-15.5.1.15018445::local failed (unpack phase): * (no error message)
Fixed in vmware-workstation-15.5.1.15018445-r1 Thanks for the bug report.
WARNING / HINT concerning -modules: Unfortunately, -15.5.1 does not comply with -5.4.1 out of the box right now. Patches are available: . . . http://rglinuxtech.com/?p=2645 pointing to . . . https://github.com/mkubecek/vmware-host-modules/tree/workstation-15.5.1 Would expect a "15.5.2" by VMware.
https://github.com/stefantalpalaru/gentoo-overlay/issues/49
Sorry for not having recognized in time; WORKSFORME.
Just to NOTE: Fortunately, -15.5.1 already covers VMSA-2019-0023: [ https://www.vmware.com/security/advisories/VMSA-2019-0023.html ]
