Описание
Security update for virtualbox
This update for virtualbox fixes the following issues:
- The version has been updated from 5.1.8 to 5.1.12. Upstream fixed various functional and security issues.
- Multiple security issues have been fixed that could cause DoS and possibly privilege escalation (CVE-2016-5501,CVE-2016-5538,CVE-2016-5605,CVE-2016-5608,CVE-2016-5610, CVE-2016-5611,CVE-2016-561313, boo#1005621)
- A security warning regarding USB passthru has been added. It will be shown only the first time virtualbox is started. (bnc#1018340)
- Reverted a previously introduced user interface scaling change, because it caused problems (https://forums.opensuse.org/showthread.php/521520-VirtualBox-interface-scaling, bsc#1014694)
Список пакетов
openSUSE Leap 42.2
Ссылки
- E-Mail link for openSUSE-SU-2017:0270-1
- SUSE Security Ratings
Описание
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect confidentiality, integrity, and availability via vectors related to Core, a different vulnerability than CVE-2016-5538.
Затронутые продукты
Ссылки
- CVE-2016-5501
- SUSE Bug 1005621
Описание
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect confidentiality, integrity, and availability via vectors related to Core, a different vulnerability than CVE-2016-5501.
Затронутые продукты
Ссылки
- CVE-2016-5538
- SUSE Bug 1005621
Описание
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.1.4 in Oracle Virtualization allows remote attackers to affect confidentiality and integrity via vectors related to VRDE.
Затронутые продукты
Ссылки
- CVE-2016-5605
- SUSE Bug 1005621
Описание
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect availability via vectors related to Core, a different vulnerability than CVE-2016-5613.
Затронутые продукты
Ссылки
- CVE-2016-5608
- SUSE Bug 1005621
Описание
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect confidentiality, integrity, and availability via vectors related to Core.
Затронутые продукты
Ссылки
- CVE-2016-5610
- SUSE Bug 1005621
Описание
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect confidentiality via vectors related to Core.
Затронутые продукты
Ссылки
- CVE-2016-5611
- SUSE Bug 1005621
Описание
unknown
Затронутые продукты
Ссылки
- CVE-2016-561313