An important update for Open VM Tools has been released for various versions of Ubuntu Linux, specifically 20.04 LTS, 22.04 LTS, 24.04 LTS, 24.10, and 25.04. This update addresses a security vulnerability that could allow an attacker within a guest operating system to perform unauthorized file operations, potentially leading to privilege escalation.
- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 25.04: open-vm-tools 2:12.5.0-1ubuntu0.1
- Ubuntu 24.10: open-vm-tools 2:12.4.5-1ubuntu0.1
- Ubuntu 24.04 LTS: open-vm-tools 2:12.4.5-1~ubuntu0.24.04.2
- Ubuntu 22.04 LTS: open-vm-tools 2:12.3.5-3~ubuntu0.22.04.2
- Ubuntu 20.04 LTS: open-vm-tools 2:11.3.0-2ubuntu0~ubuntu20.04.8
A general system update will apply all necessary changes to fix the vulnerability.
Details of the Vulnerability
The security issue, identified as CVE-2025-22247, involves incorrect handling of file operations by Open VM Tools, which is a set of utilities designed for virtual machines hosted on VMware platforms. The vulnerability poses a risk to the affected Ubuntu versions and their derivatives.Affected Releases
- Ubuntu 25.04- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Recommended Updates
To mitigate this vulnerability, users are advised to update their systems to the specified package versions as follows:- Ubuntu 25.04: open-vm-tools 2:12.5.0-1ubuntu0.1
- Ubuntu 24.10: open-vm-tools 2:12.4.5-1ubuntu0.1
- Ubuntu 24.04 LTS: open-vm-tools 2:12.4.5-1~ubuntu0.24.04.2
- Ubuntu 22.04 LTS: open-vm-tools 2:12.3.5-3~ubuntu0.22.04.2
- Ubuntu 20.04 LTS: open-vm-tools 2:11.3.0-2ubuntu0~ubuntu20.04.8
A general system update will apply all necessary changes to fix the vulnerability.
Additional Resources
For further details, users can refer to the official Ubuntu security notice [here](https://ubuntu.com/security/notices/USN-7508-1). More information about the packages can be found on Launchpad via the respective links provided in the notice.Conclusion
It is crucial for users of affected Ubuntu versions to promptly apply the updates to protect their systems from potential security risks associated with the Open VM Tools vulnerability. Regularly updating software is essential for maintaining system security and stabilityOpen VM Tools update for Ubuntu
An update for Open VM Tools has been released for Ubuntu Linux versions 20.04 LTS, 22.04 LTS, 24.04 LTS, 24.10, and 25.04:
[USN-7508-1] Open VM Tools vulnerability
