VMware Release Security Updates for tools and workstation (June 06, 2019)

Description

VMware has released security updates to address vulnerabilities affecting Tools 10 and Workstation 15. It is recommended to take the necessary precautions by ensuring your products is always updated.

Advisory ID

VMSA-2019-0009

Advisory Severity

Important

CVSSv3

7.1-8.5

Synopsis

VMware Tools and Workstation updates address out of bounds read and use-after-free vulnerabilities. (CVE-2019-5522, CVE-2019-5525)

Issue Date

2019-06-060

Updated On

2019-06-06 (initial Advisory)

CVE(s)

CVE-2019-5522, CVE-2019-5525

VMware Tools out of bounds read vulnerability – CVE-2019-5522

Response Matrix:

Product

Version

Running On

CVE Identifier

CVSSV3

Severity

Fixed Version

Workarounds

Additional

VMware Tools

10.x

Windows

CVE-2019-5522

7.1

Important

10.3.10

None

None

VMware workstation use-after-free vulnerability – CVE-2019-5525

Response Matrix:

Product

Version

Running On

CVE Identifier

CVSSV3

Severity

Fixed Version

Workarounds

Additional

Workstation

15.x

Linux

CVE-2019-5525

8.5

Important

15.1.0

None

None

Workstation

15.x

Windows

CVE-2019-5525

N/A

N/A

Not affected

N/A

N/A

For more information on the VMware Security updates you can follow this url:

https://www.vmware.com/security/advisories/VMSA-2019-0009.html

Reference

  • VMware release Security updates for tools and workstation (US-Cert)

https://www.us-cert.gov/ncas/current-activity/2019/06/06/VMware-Releases-Security-Updates-Tools-and-Workstation