With earlier versions, this points to the global BUILDROOT directory, which
is already empty at this stage. However, RPM 4.20 rearranged the working
directories (which are supposed to be internal implementation details) and
this ends up removing the unpacked source tree instead and failing later.
Setting %_prefix also affects the value of %__perl, which is used in
multiple postinstall steps. Without this, a number of error messages
result:
/usr/lib64/open-vm-tools/bin/perl: No such file or directory
GCC 15 defaults to C23, in which the interpretation of function
declarations without parameters has changed from unspecified (as in K&R) to
`void`. This fix has been accepted upstream.
https://github.com/vmware/open-vm-tools/pull/751
. fix for CVE-2023-34058 another SAML token signature bypass vulnerability.
. fix for CVE-2023-34059 a file descriptor hijack vulnerability in the
vmware-user-suid-wrapper.
. address https://github.com/vmware/open-vm-tools/issues/310
Remove CVE-2023-34058.patch and CVE-2023-34059.patch as no longer needed.
Fix for CVE-2023-20900 - a SAML token signature bypass vulnerability.
Fix for CVE-2023-20867 - an Authentication Bypass vulnerability.
Linux quiesced snapshots have been updated to avoid intermittent hangs
of the vmtoolsd process.
File systems prefrozen by custom quiescing scripts must be listed on the
"excludedFileSystems" setting in the "vmbackup" section of the tools.conf
file.
A tools.conf configuration setting is available to temporaily direct
Linux quiesced snaphots to restore pre open-vm-tools 12.2.0 behavior
of ignoring file systems already frozen.
A number of Coverity reported issues have been addressed.
A number of GitHub issues and pull requests have been handled.
The majority of code is GPL-2.0 or LGPL-2.1, but a few random extra
licenses are found in certain files which appear to make it into the
binary RPMs:
W3C: gauth/serviceImpl/schemas/xmldsig-core-schema.xsd
ICU: lib/misc/codeset.c
ISC: lib/misc/base64.c
MIT: lib/misc/codesetUTF8.c
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
The deployPkg plugin may prematurely reboot the guest VM before cloud-init
has completed user data setup
A SIGSEGV may be encountered when a non-quiescing snapshot times out.
A number of Coverity reported issues have been addressed.
. fix for CVE-2022-31676 a local privilege escalation vulnerability.
. address a number of Coverity reported issues.
Remove patch 1205-Properly-check-authorization-on-incoming-guestOps-re.patch
as no longer needed.
Enable build of the new salt-minion plugin package.
Deferring enablement of new containerInfo plugin until a later revision.
Build with fuse3 on Fedora.
Add vmware-alias-import, vmwgfxctrl, libgdp.so, libguestStore.so
and libguestStoreClient.so.*.
Remove open-vm-tools-fix-kms-autodetection.patch,
open-vm-tools-gcc11.patch and open-vm-tools-gdk-glib.patch
as no longer needed.
