open-vm-tools: Local Privilege Escalation A vulnerability has been discovered in open-vm-tools which could allow for local privilege escalation. open-vm-tools 2022-10-31 2022-10-31 866227 remote 12.1.0 12.1.0

open-vm-tools contains tools for VMware guests.

A pipe accessible to unprivileged users in the VMWare guest does not sufficiently sanitize input.

An unprivileged guest user could achieve root privileges within the guest.

There is no known workaround at this time.

All open-vm-tools users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/open-vm-tools-12.1.0" CVE-2022-31676 VMSA-2022-0024.1 ajak ajak