7.7 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
40.0%
Updated virtualbox packages fixes security vulnerability This update provides the 4.3.28 maintenance release fixing the following security issue: The Floppy Disk Controller (FDC) in QEMU, XEN, KVM and virtualbox allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the FD_CMD_READ_ID, FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM (CVE-2015-3456). For other fixes in the maintenance release, read the referenced changelog.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | kmod-vboxadditions | <Β 4.3.28-1 | kmod-vboxadditions-4.3.28-1.mga4 |
Mageia | 4 | noarch | kmod-virtualbox | <Β 4.3.28-1 | kmod-virtualbox-4.3.28-1.mga4 |
Mageia | 4 | noarch | virtualbox | <Β 4.3.28-1 | virtualbox-4.3.28-1.mga4 |