Synopsis: Low: open-vm-tools security and bug fix update Advisory ID: SLSA-2023:3944-1 Issue Date: 2023-06-30 CVE Numbers: CVE-2023-20867 -- Security Fix(es): * open-vm-tools: authentication bypass vulnerability in the vgauth module (CVE-2023-20867) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE Bug Fix(es): * [ESXi] [SL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml' * [ESXi][SL7.9][open-vm-tools] Snapshot of the SL7 guest on the VMWare ESXi hypervisor failed vm hangs -- SL7 x86_64 open-vm-tools-11.0.5-3.el7_9.6.x86_64.rpm open-vm-tools-debuginfo-11.0.5-3.el7_9.6.x86_64.rpm open-vm-tools-desktop-11.0.5-3.el7_9.6.x86_64.rpm open-vm-tools-devel-11.0.5-3.el7_9.6.x86_64.rpm open-vm-tools-test-11.0.5-3.el7_9.6.x86_64.rpm - Scientific Linux Development Team