Updated on: 31 August 2023
open-vm-tools | 31 AUGUST 2023 | Build 22234872
Check back for additions and updates to these release notes.
The release notes cover the following topics:
This release resolves CVE-2023-20900. For more information on this vulnerability and its impact on VMware products, see https://www.vmware.com/security/advisories/VMSA-2023-0019.html.
-
Please see the Resolved Issues and Known Issues sections below.
-
A complete list of the granular changes in the open-vm-tools 12.3.0 release is available at:
-
Deprecated: Using "xml-security-c" and "xerces-c" to build the VMware Guest Authentication Service (VGAuth)
Starting with open-vm-tools 12.4.0, and going forward, the VGAuth service build will require the "xmlsec1" and "libxml2" development and runtime packages. If still using the "xml-security-c" and "xerces-c" open source projects to build open-vm-tools, now is the time to plan for the change. The open-vm-tools 12.3.x series will be the last version that can use "xml-security-c" and "xerces-c".
open-vm-tools 12.3.0 is available in the following languages:
- English
- French
- German
- Spanish
- Italian
- Japanese
- Korean
- Simplified Chinese
- Traditional Chinese
The Guest OS Customization Support Matrix provides details about the guest operating systems supported for customization.
The VMware Product Interoperability Matrix provides details about the compatibility of current and earlier versions of VMware Products.
-
This release resolves CVE-2023-20900.
For more information on this vulnerability and its impact on VMware products, see https://www.vmware.com/security/advisories/VMSA-2023-0019.html.
-
Linux quiesced snapshot: "SyncDriver: failed to freeze 'filesystem'"
The open-vm-tools 12.2.0 release had an update to the Linux quiesced snapshot operation that would avoid starting a quiesced snapshot if a filesystem had already been frozen by another process. See the Resolved Issues section in the open-vm-tools 12.2.0 Release Notes. That fix may have been backported into earlier versions of open-vm-tools by Linux vendors.
It is possible that filesystems are being frozen in custom pre-freeze scripts to control the order in which those specific filesystems are to be frozen. The vmtoolsd process must be informed of all such filesystems with the help of "excludedFileSystems" setting of tools.conf.
[vmbackup] excludedFileSystems=/opt/data,/opt/app/project-*,...A temporary workaround is available (starting from open-vm-tools 12.3.0) for system administrators to quickly allow a quiescing operation to succeed until the "excludedFileSystems" list can be configured. Note, if another process thaws the file system while a quiescing snapshot operation is ongoing, the snapshot may be compromised. Once the "excludedFileSystems" list is configured this setting MUST be unset (or set to false).
[vmbackup] ignoreFrozenFileSystems = trueThis workaround is provided in the source file changes in
https://github.com/vmware/open-vm-tools/commit/60c3a80ddc2b400366ed05169e16a6bed6501da2and at Linux vendors' discretion, may be backported to earlier versions of open-vm-tools.
-
A number of Coverity reported issues have been addressed.
-
Component Manager / salt-minion: New InstallStatus "UNMANAGED".
Salt-minion added support for "ExternalInstall" (106) to indicate an older version of salt-minion is installed on the vm and cannot be managed by the svtminion.* scripts. The Component Manager will track that as "UNMANAGED" and take no action.
-
The following pull requests and issues have been addressed
-
Add antrea and calico interface pattern to GUESTINFO_DEFAULT_IFACE_EXCLUDES
-
Invalid argument with "\" in Linux username (Active Directory user)
-
Improve POSIX guest identification
-
Remove appUtil library which depends on deprecated "gdk-pixbuf-xlib"
-
Fix build problems with grpc
-
-
Shared Folders mount is unavailable on Linux VM.
If the Shared Folders feature is enabled on a Linux VM while it is powered off, the shared folders mount is not available on restart.
Note: This issue is applicable to open-vm-tools running on VMware Workstation and VMware Fusion.
Workaround:
If the VM is powered on, disable and enable the Shared Folders feature from the interface. For resolving the issue permanently, edit /etc/fstab and add an entry to mount the Shared Folders automatically on boot. For example, add the line:
vmhgfs-fuse /mnt/hgfs fuse defaults,allow_other 0 0