Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 812878 Details for
Bug 866227
<app-emulation/open-vm-tools-12.1.0: local privilege escalation
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
CVE-2022-31676: backported patch for versions 11.3.5_p18557794 and 12.0.5_p19716617
1205-Properly-check-authorization-on-incoming-guestOps-re.patch (text/plain), 1.40 KB, created by
CFuga
on 2022-09-19 16:35:51 UTC
(
hide
)
Description:
CVE-2022-31676: backported patch for versions 11.3.5_p18557794 and 12.0.5_p19716617
Filename:
MIME Type:
Creator:
CFuga
Created:
2022-09-19 16:35:51 UTC
Size:
1.40 KB
patch
obsolete
>From be635a7eaf7bd19177b7002aa2c793c78be77ecc Mon Sep 17 00:00:00 2001 >From: John Wolfe <jwolfe@vmware.com> >Date: Wed, 10 Aug 2022 07:20:28 -0700 >Subject: [PATCH] Properly check authorization on incoming guestOps requests > >Fix public pipe request checks. Only a SessionRequest type should >be accepted on the public pipe. >--- > open-vm-tools/vgauth/serviceImpl/proto.c | 6 +++++- > 1 file changed, 5 insertions(+), 1 deletion(-) > >diff --git a/open-vm-tools/vgauth/serviceImpl/proto.c b/open-vm-tools/vgauth/serviceImpl/proto.c >index db7159e..c4f85b0 100644 >--- a/open-vm-tools/vgauth/serviceImpl/proto.c >+++ b/open-vm-tools/vgauth/serviceImpl/proto.c >@@ -1,5 +1,5 @@ > /********************************************************* >- * Copyright (C) 2011-2016,2019-2021 VMware, Inc. All rights reserved. >+ * Copyright (c) 2011-2016,2019-2022 VMware, Inc. All rights reserved. > * > * This program is free software; you can redistribute it and/or modify it > * under the terms of the GNU Lesser General Public License as published >@@ -1201,6 +1201,10 @@ Proto_SecurityCheckRequest(ServiceConnection *conn, > VGAuthError err; > gboolean isSecure = ServiceNetworkIsConnectionPrivateSuperUser(conn); > >+ if (conn->isPublic && req->reqType != PROTO_REQUEST_SESSION_REQ) { >+ return VGAUTH_E_PERMISSION_DENIED; >+ } >+ > switch (req->reqType) { > /* > * This comes over the public connection; alwsys let it through. >-- >2.6.2 >
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 866227
: 812878