Package: vmware-package Version: 0.22 Severity: normal Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for vmware-package.
CVE-2008-2100[0]: | Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on | VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE | 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware | ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code | on the host OS via unspecified vectors. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2100 http://security-tracker.debian.net/tracker/CVE-2008-2100 As mentioned in bug #484491, I think you just need to update the hashes for the tarballs to fix this bug :) Kind regards, Thomas.
signature.asc
Description: Digital signature
