7.7 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
40.1%
Debian Security Advisory DSA-3274-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
May 28, 2015 http://www.debian.org/security/faq
Package : virtualbox
CVE ID : CVE-2015-3456
Jason Geffner discovered a buffer overflow in the emulated floppy
disk drive, resulting in the potential privilege escalation.
For the oldstable distribution (wheezy), this problem has been fixed
in version 4.1.18-dfsg-2+deb7u5.
For the stable distribution (jessie), this problem has been fixed in
version 4.3.18-dfsg-3+deb8u2.
For the unstable distribution (sid), this problem has been fixed in
version 4.3.28-dfsg-1.
We recommend that you upgrade your virtualbox packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 8 | armel | qemu-system-arm | < 1:2.1+dfsg-12 | qemu-system-arm_1:2.1+dfsg-12_armel.deb |
Debian | 8 | arm64 | qemu-system | < 1:2.1+dfsg-12 | qemu-system_1:2.1+dfsg-12_arm64.deb |
Debian | 6 | i386 | qemu-kvm-dbg | < 0.12.5+dfsg-5+squeeze12 | qemu-kvm-dbg_0.12.5+dfsg-5+squeeze12_i386.deb |
Debian | 6 | i386 | virtualbox-ose-guest-utils | < 3.2.10-dfsg-1+squeeze4 | virtualbox-ose-guest-utils_3.2.10-dfsg-1+squeeze4_i386.deb |
Debian | 7 | powerpc | qemu-user | < 1.1.2+dfsg-6a+deb7u7 | qemu-user_1.1.2+dfsg-6a+deb7u7_powerpc.deb |
Debian | 8 | powerpc | qemu-system-arm | < 1:2.1+dfsg-12 | qemu-system-arm_1:2.1+dfsg-12_powerpc.deb |
Debian | 8 | powerpc | qemu-system-x86 | < 1:2.1+dfsg-12 | qemu-system-x86_1:2.1+dfsg-12_powerpc.deb |
Debian | 7 | all | virtualbox-ose-fuse | < 4.1.18-dfsg-2+deb7u5 | virtualbox-ose-fuse_4.1.18-dfsg-2+deb7u5_all.deb |
Debian | 8 | i386 | qemu-kvm | < 1:2.1+dfsg-12 | qemu-kvm_1:2.1+dfsg-12_i386.deb |
Debian | 7 | kfreebsd-i386 | qemu-utils | < 1.1.2+dfsg-6a+deb7u7 | qemu-utils_1.1.2+dfsg-6a+deb7u7_kfreebsd-i386.deb |