[PATCH] openvmtools: Update to version 13.0.5

Sat, 18 Oct 2025 16:11:10 -0700 

- Update from version 12.5.0 to 13.0.5
- Update of rootfile not required
- 2 CVE fixes.
- Changelog
    13.0.5
        Resolved Issues
            This release resolves CVE-2025-41244.
                For more information on this vulnerability and its impact on 
Broadcom
                products, see VMSA-2025-0015.
                A patch to address CVE-2025-41244 on earlier open-vm-tools 
releases is
                provided to the Linux community at CVE-2025-41244.patch.
            Guest OS Customization updated to use "systemctl reboot".
            Currently the "telinit 6" command is used to reboot a Linux VM 
following
                Guest OS Customization. As the classic Linux init system, 
SysVinit, is
                deprecated in favor of a newer init system, systemd, the telinit
                command may not be available on the base Linux OS.
                This change adds support to Guest OS Customization for the 
systemd init
                system. If the modern init system, systemd, is available, then a
                "systemctl reboot" command will be used to trigger reboot. 
Otherwise,
                the "telinit 6" command will be used assuming the traditional 
init
                system, SysVinit, is still available.
    13.0.0
        Resolved Issues
            The following github.com/vmware/open-vm-tools pull requests and 
issues has
            been addressed.
             FTBFS: --std=c23 conflicting types between function definition and
                declaration MXUserTryAcquireForceFail()
             Fixes Issue #750
             Pull request #751
             Provide tools.conf settings to deactivate one-time and periodic 
time
                synchronization
             The new tools.conf settings disable-all and disable-periodic allow 
the
                guest OS administrator to deactivate one-time and periodic time
                synchronization without rebooting the VM or restarting the 
guest OS.
             Fixes Issue #302
             Fix xmlsec detection when cross-compiling with pkg-config
             Pull request #732
            After October 25, 2024, with open-vm-tools earlier than 13.0.0, the
                salt-minion component is not installed or fails to install in a 
guest
                operating system through the VMware Component Manager
             When you configure the salt-minion component in the present state, 
its
                last status is set to 102 (not installed) or 103 (installation 
failed),
                never reaching the installed state 100.
             The VM advanced setting with the key
                "guestinfo./vmware.components.salt_minion.desiredstate" has a 
value
                present.
             The VM advanced setting with the key
                "guestinfo.vmware.components.salt_minion.laststatus" has a 
value 102
                or 103.
             The salt-minion component installs a log file with traces 
indicating
                failure to access the online salt repository on
                https://repo.saltproject.io. The 
"vmware-svtminion.sh-install-*.log"
                file for the failed install shows a trace similar to:
                     <date+time> INFO: 
/usr/lib64/open-vm-tools/componentMgr/saltMinion/svtminion.sh:_curl_download 
attempting download of file 'repo.json'
                     <date+time> WARNING: 
/usr/lib64/open-vm-tools/componentMgr/saltMinion/svtminion.sh:_curl_download 
failed to download file 'repo.json' from 
'https://repo.saltproject.io/salt/py3/onedir/repo.json' on '0' attempt, retcode 
'6'
                     <date+time> WARNING: 
/usr/lib64/open-vm-tools/componentMgr/saltMinion/svtminion.sh:_curl_download 
failed to download file 'repo.json' from 
'https://repo.saltproject.io/salt/py3/onedir/repo.json' on '1' attempt, retcode 
'6'
                     <date+time> WARNING: 
/usr/lib64/open-vm-tools/componentMgr/saltMinion/svtminion.sh:_curl_download 
failed to download file 'repo.json' from 
'https://repo.saltproject.io/salt/py3/onedir/repo.json' on '2' attempt, retcode 
'6'
                     <date+time> WARNING: 
/usr/lib64/open-vm-tools/componentMgr/saltMinion/svtminion.sh:_curl_download 
failed to download file 'repo.json' from 
'https://repo.saltproject.io/salt/py3/onedir/repo.json' on '3' attempt, retcode 
'6'
                     <date+time> WARNING: 
/usr/lib64/open-vm-tools/componentMgr/saltMinion/svtminion.sh:_curl_download 
failed to download file 'repo.json' from 
'https://repo.saltproject.io/salt/py3/onedir/repo.json' on '4' attempt, retcode 
'6'
                     <date+time> ERROR: 
/usr/lib64/open-vm-tools/componentMgr/saltMinion/svtminion.sh:_curl_download 
failed to download file 'repo.json' from 
'https://repo.saltproject.io/salt/py3/onedir/repo.json' after '5' attempts
                This issue is resolved in this release.
                The new versions of the salt-minion integration scripts 
supporting the
                new Salt Project repository locations are available at:
                
https://packages.broadcom.com/artifactory/saltproject-generic/onedir/
    12.5.4
        Product Support Notice
                Beginning with the next major release, we will be reducing the 
number
                of supported localization languages. The three supported 
languages
                will be:
                    Japanese
                    Spanish
                    French
                The following languages will no longer be supported:
                    Italian
                    German
                    Brazilian Portuguese
                    Traditional Chinese
                    Korean
                    Simplified Chinese
                Impact:
                    Users who have been using the deprecated languages will no 
longer
                        receive updates or support in these languages.
                    All user interfaces, message catalogs, help documentation, 
and
                        customer support will be available only in English or 
in the
                        three supported languages mentioned above.
        Resolved Issues
            This release resolves CVE-2025-41244.
                For more information on this vulnerability and its impact on 
Broadcom
                products, see VMSA-2025-0015.
                A patch to address CVE-2025-41244 on earlier open-vm-tools 
releases is
                provided to the Linux community at CVE-2025-41244.patch.
    12.5.2
        Resolved Issues
            This release resolves CVE-2025-22247.
                For more information on this vulnerability and its impact on 
Broadcom
                products, see VMSA-2025-0007
                A patch to address CVE-2025-22247 on earlier open-vm-tools 
releases is
                provided to the Linux community at CVE-2025-22247.patch.

Signed-off-by: Adolf Belka <[email protected]>
---
 lfs/openvmtools | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/lfs/openvmtools b/lfs/openvmtools
index 52ea91c73..899bedb03 100644
--- a/lfs/openvmtools
+++ b/lfs/openvmtools
@@ -26,7 +26,7 @@ include Config
 
 SUMMARY    = Open Virtual Machine Tools
 
-VER        = stable-12.5.0
+VER        = stable-13.0.5
 
 THISAPP    = open-vm-tools-$(VER)
 DL_FILE    = $(THISAPP).tar.gz
@@ -35,7 +35,7 @@ DIR_APP    = $(DIR_SRC)/$(THISAPP)/open-vm-tools
 TARGET     = $(DIR_INFO)/$(THISAPP)
 SUP_ARCH   = x86_64
 PROG       = openvmtools
-PAK_VER    = 13
+PAK_VER    = 14
 
 DEPS       =
 
@@ -52,7 +52,7 @@ objects = $(DL_FILE)
 
 $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
 
-$(DL_FILE)_BLAKE2 = 
3ad8b820d75fe82f0111a3042a5f26697c56a10b06c77abb55ce84ebd9c8c9867283a7682131633f67ea86a7a85f95f35b3eecc255a3b8de44ee0e242f4da44e
+$(DL_FILE)_BLAKE2 = 
a5f7ba870e8104e8c018b632b446a3c4ad8d90faf09578eba418928be5c53792efc91b84c84de2dec5b23135977e96f5ed10a66fd0047f627d8db6e286b71bb2
 
 install : $(TARGET)
 
-- 
2.51.0

Reply via email to