New
#1
VMWare Workstation Player new release 15.0.3 avaiable
New VMWare Workstation Player 15.0.3
free
Release notes: VMware Workstation 15.0.3 Player Release Notes
Important Fixes
- VMware Workstation Player contains elevation of privilege vulnerabilities:
- Workstation Player does not handle paths appropriately. This may allow the path to the VMX executable, on a Windows host, to be hijacked by a non-administrator leading to elevation of privilege. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2019-5511 to this issue. See VMSA-2019-0002 for further information.
- COM classes are not handled appropriately. This may allow hijacking of COM classes used by the VMX process, on a Windows host, leading to elevation of privilege. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2019-5512 to this issue. See VMSA-2019-0002 for further information.
- Updated OpenSSL library version to 1.0.2q.
- Updated libxml2 library version to 2.9.9.