Rocksolid Light - comp.os.vms - multiple VMWare vulnerabilities

multiple VMWare vulnerabilities

<usdcrh$192g0$1@dont-email.me>

https://news.novabbs.org/computers/article-flat.php?id=33680&group=comp.os.vms#33680

Path: i2pn2.org!i2pn.org!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail
From: craigberry@nospam.mac.com (Craig A. Berry)
Newsgroups: comp.os.vms
Subject: multiple VMWare vulnerabilities
Date: Thu, 7 Mar 2024 15:50:40 -0600
Organization: A noiseless patient Spider
Lines: 7
Message-ID: <usdcrh$192g0$1@dont-email.me>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Thu, 7 Mar 2024 21:50:41 -0000 (UTC)
Injection-Info: dont-email.me; posting-host="302e40a6c7a34218a1afa775ad7ca759";
logging-data="1346048"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+HiFwdLc7lxXbT50uA4/vqe32I3GL9E3c="
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:mQgWTq9FITqagNo3TAmCBfvNh+E=
Content-Language: en-US

by: Craig A. Berry - Thu, 7 Mar 2024 21:50 UTC

If you're running OpenVMS x86 on a VMWare host, update it now:

https://arstechnica.com/security/2024/03/vmware-issues-patches-for-critical-sandbox-escape-vulnerabilities/

Three of the four CVEs involve USB, which you are unlikely to have
enabled on your VMS VMs, but there is also a sandbox escape CVE.

Victory or defeat!

computers / comp.os.vms / multiple VMWare vulnerabilities

Subject	Author
multiple VMWare vulnerabilities	Craig A. Berry