Peter Korsgaard 59dc9dcbe1 package/openvmtools: add upstream security patch for CVE-2025-22247 ...

Fixes the following security issue:

CVE-2025-22247: open-vm-tools contains an insecure file handling
vulnerability.

https://github.com/vmware/open-vm-tools/tree/CVE-2025-22247.patch

The upstream patch needs to be applied with -p2, so drop the open-vm-tools
prefix (sed -i 's|open-vm-tools/||g') and include it here.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Julien Olivain <ju.o@free.fr>
(cherry picked from commit 5ba3e0d8a7)
Signed-off-by: Thomas Perale <thomas.perale@mind.be>

2025-05-27 18:33:21 +02:00

..

0001-no_cflags_werror.patch

…

0002-dont-force-cppflags.patch

…

0003-Rename-poll-h-into-vm_poll-h-to-fix-build-failure-on-musl.patch

…

0004-Remove-assumptions-about-glibc-being-only-libc-imple.patch

…

0005-Use-configure-test-for-struct-timespec.patch

…

0006-Fix-definition-of-ALLPERMS-and-ACCESSPERMS.patch

…

0007-Use-configure-to-test-for-feature-instead-of-platfor.patch

…

0008-Use-configure-test-for-sys-stat.h-include.patch

…

0011-open-vm-tools-vmhgfs-fuse-fsutils.h-fix-build-on-mus.patch

…

0012-Make-HgfsConvertFromNtTimeNsec-aware-of-64-bit-time_.patch

…

0013-Properly-check-authorization-on-incoming-guestOps-re.patch

…

0014-CVE-2025-22247-1100-1225-VGAuth-updates.patch

…

Config.in

…

openvmtools.hash

…

openvmtools.mk

…

S10vmtoolsd

…

shutdown

…

vmtoolsd.service

…