VMware Cloud Community
TK2626
Contributor
Contributor
‎08-26-2022 04:57 AM

VMware Tools problem (CVE-2022-31676)

Hello, I am new here and maybe I missed the answer.

Is it known when there will be an update for the ESXI to fix the VMware Tools problem?
(CVE-2022-31676)
https://www.vmware.com/security/advisories/VMSA-2022-0024.html

or how did you solve this.
is there a tutorial how to put the img. file in the datastore so i can roll it out automatically on all clients.

thank you in advance

Labels (1)
Labels
0 Kudos
3 Replies
LZVirtEng
Contributor
Contributor
‎08-26-2022 05:11 AM

I found it in Lifecycle Manager if you search for VMware Tools Async Release ver 12.1. under Components.   Create a baseline for that and you can deploy it to your hosts.   It doesn't reboot the hosts, so you can do it live.  At that point you can start upgrading vmtools on your vms.

LZVirtEng_0-1661515792921.png

 

0 Kudos
TK2626
Contributor
Contributor
‎08-26-2022 05:50 AM

i still have a 6.7 running here. and i can't find the update in the update manager do i have to install the "VMware Tools Offline VIB Bundle"? via upload to the Update manager (UPLOAD FROM FILE)?

0 Kudos
IRIX201110141
Champion
Champion
‎08-26-2022 06:31 AM

In 6.7 there is only VUM and not LCM. For importing patches into VUM you need them as a *zip.  On the ESXi command line you can import *.zip(depot) or *.vib(VIBs).

 

If you would like to install them independently into the GuestOS the latest versions can be found here: https://packages.vmware.com/tools/releases/latest/

The Tools are downward compatible.

Regards,
Joerg

0 Kudos