VMware security advisory (VMSA-2018-0025)

VMware issued a security update (VMSA-2018-0025) for ESXi, Workstation, and Fusion and provided workarounds to address a denial-of-service vulnerability CVE-2018-6977. 

“VMware ESXi, Workstation and Fusion contain a denial-of-service vulnerability due to an infinite loop in a 3D-rendering shader. Successfully exploiting this issue may allow an attacker with normal user privileges in the guest to make the VM unresponsive, and in some cases, possibly result other VMs on the host or the host itself becoming unresponsive,” VMware stated in the advisory.

There is no patch to address the vulnerability (rated important), but VMware provided a workaround to disable the 3D-acceleration feature as documented in the update.