. fix for CVE-2023-34058 another SAML token signature bypass vulnerability.
. fix for CVE-2023-34059 a file descriptor hijack vulnerability in the
vmware-user-suid-wrapper.
. address https://github.com/vmware/open-vm-tools/issues/310
Remove CVE-2023-34058.patch and CVE-2023-34059.patch as no longer needed.
Fix for CVE-2023-20900 - a SAML token signature bypass vulnerability.
Fix for CVE-2023-20867 - an Authentication Bypass vulnerability.
Linux quiesced snapshots have been updated to avoid intermittent hangs
of the vmtoolsd process.
File systems prefrozen by custom quiescing scripts must be listed on the
"excludedFileSystems" setting in the "vmbackup" section of the tools.conf
file.
A tools.conf configuration setting is available to temporaily direct
Linux quiesced snaphots to restore pre open-vm-tools 12.2.0 behavior
of ignoring file systems already frozen.
A number of Coverity reported issues have been addressed.
A number of GitHub issues and pull requests have been handled.
The deployPkg plugin may prematurely reboot the guest VM before cloud-init
has completed user data setup
A SIGSEGV may be encountered when a non-quiescing snapshot times out.
A number of Coverity reported issues have been addressed.
. fix for CVE-2022-31676 a local privilege escalation vulnerability.
. address a number of Coverity reported issues.
Remove patch 1205-Properly-check-authorization-on-incoming-guestOps-re.patch
as no longer needed.
Enable build of the new salt-minion plugin package.
Deferring enablement of new containerInfo plugin until a later revision.
Build with fuse3 on Fedora.
Add vmware-alias-import, vmwgfxctrl, libgdp.so, libguestStore.so
and libguestStoreClient.so.*.
Remove open-vm-tools-fix-kms-autodetection.patch,
open-vm-tools-gcc11.patch and open-vm-tools-gdk-glib.patch
as no longer needed.
Added new open-vm-tools-sdmp package.
Workaround for vm-support script path is no longer needed.
Added missing dependencies for vm-support script.
Updated gcc10-warning.patch.
Removed gcc9-static-inline.patch and diskinfo-log-spew.patch that
are no longer needed.
Added gcc9-static-inline.patch for gcc9 warnings.
Added vix-memleak.patch for a memory leak.
Removed gcc9-warnings.patch which is no longer needed.
Removed vmware-guestproxycerttool as it is no longer available upstream.
Removed cloud-init.patch which is no longer needed.
Removed hgfsPlugin-crash.patch which is no longer needed.
Removed linuxDeploymentUtils-strncat.patch which is no longer needed.
Added quiescing-combined.patch for quiesced snapshot fixes.
Updated hgfsServer-aligned.patch for open-vm-tools-10.3.5.
Remove the patches that are no longer needed.
New version builds with gtk3 by default.
Package vmware-user symlink in desktop.
Add a new test package for test utilities.
Remove patches that are no longer needed.
Build with --enable-xmlsec1 to avoid dependency on xerces-c and xml-security-c.
Replace _prefix/lib/udev/rules.d/ with _udevrulesdir macro.
- New version requires adding a new service vgauthd
- Removed old patches that are no longer needed
- Fix (strerror_r.patch) for picking GNU signature of strerror_r
- Fix (toolboxcmd.patch) for compiling toolboxcmd-shrink.c with gcc 5.0.1
