openSUSE: Security Advisory for Virtualbox (openSUSE-SU-2020:0925-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2020:0925-1 Security update for Virtualbox

Virtualbox was updated to 6.0.22 released May 15 2020 by Oracle This is a maintenance release. The following items were fixed and/or added: Guest Additions: Build problems fix with Oracle Linux 8.2 Red Hat compatible kernel / Red Hat Enterprise Linux 8.2 / CentOS 8.2 bug 19391 Guest...

Security update for Virtualbox (moderate)

openSUSE Security Update: Security update for Virtualbox Announcement ID: openSUSE-SU-2020:0925-1 Rating: moderate References: 1169628 Cross-References: CVE-2020-2741 CVE-2020-2742 CVE-2020-2743 CVE-2020-2748 CVE-2020-2758 CVE-2020-2894 CVE-2020-2902 CVE-2020-2905 CVE-2020-2907 CVE-2020-2908...

Denial of Service Vulnerability in libvncserver

libvncserver is a cross-platform VNC code library, GNOME Remote Desktop, VirtualBox and many other applications use the library to implement VNC server-side functionality. A denial of service vulnerability exists in libvncserver, which can be exploited by an attacker to cause a denial of service...

AcidBox Malware Uncovered Using Repurposed VirtualBox Exploit

Advanced malware, dubbed AcidBox, has been identified by researchers who say a mysterious cybergang used it twice against Russian organizations as far back as 2017. In a report released Wednesday, Palo Alto Networks’ Unit 42 sheds new light onto attacks against the popular open-source...

The vulnerability of the vmsvgaR3FifoUpdateCursor function in the Oracle VM VirtualBox virtual machine allows a intruder to gain unauthorized access to protected information.

The vulnerability of the vmsvgaR3FifoUpdateCursor function in the Oracle VM VirtualBox virtual machine is related to the lack of protection for service data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the `shader_glsl_get_register_name` function in the Core component of the Oracle VM VirtualBox allows a hacker to gain unauthorized access to protected information.

The vulnerability of the shaderglslgetregistername function in the Core component of Oracle VM VirtualBox is related to the lack of protection for custom data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the xHCI component in the Oracle VM VirtualBox virtual machine allows a hacker to gain unauthorized access to protected information.

The vulnerability of the xHCI component in Oracle VM VirtualBox is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to gain full control over the application.

The vulnerability of the Core component in Oracle VM VirtualBox is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application...

The vulnerability of the xHCI component in Oracle VM VirtualBox allows a hacker to gain full control over the application.

The vulnerability of the xHCI component in Oracle VM VirtualBox is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application...

The vulnerability of the VBoxVGA graphics controller component in the Oracle VM VirtualBox virtual machine allows a hacker to gain full control over the application.

The vulnerability of the VBoxVGA graphics controller in the Oracle VM VirtualBox virtual machine is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application...

The vulnerability of D3D9 objects in the Oracle VM VirtualBox virtual machine allows a hacker to execute arbitrary code.

The vulnerability of D3D9 objects in Oracle VM VirtualBox is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Core virtual network interface e1000 in the Oracle VM VirtualBox virtual machine allows a hacker to gain full control over the application.

The vulnerability of the e1000 network interface component in the Oracle VM VirtualBox virtual machine relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application...

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to trigger a service failure.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to trigger a service failure.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to trigger a service failure using the MLD network protocol...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...