VMware has released security updates to patch an out-of-bounds read vulnerability (CVE-2018-6974) in their virtualization applications. The vulnerability may allow a guest to execute arbitrary code on the host.
Affected versions:
- VMware ESXi 6.7 without ESXi670-201810101-SG patch
- VMware ESXi 6.5 without ESXi650-201808401-BG patch
- VMware ESXi 6.0 without ESXi600-201808401-BG patch
- VMware Workstation Pro / Player 14.x versions earlier than 14.1.3
- VMware Fusion Pro / Fusion 10.x versions earlier than 10.1.3
Further information including updating instructions can be read from VMware's security advisory.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment