Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2018:0187-1
HistoryJan 24, 2018 - 3:07 a.m.

Security update for virtualbox (important)

2018-01-2403:07:42
lists.opensuse.org
70

0.975 High

EPSS

Percentile

100.0%

JSON

This update for virtualbox to version 5.1.32 fixes the following issues:

The following vulnerabilities were fixed (boo#1076372):

  • CVE-2017-5715: Systems with microprocessors utilizing speculative
    execution and indirect branch prediction may allow unauthorized
    disclosure of information to an attacker with local user access via a
    side-channel analysis, also known as "Spectre", bsc#1068032.
  • CVE-2018-2676: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2685: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2686: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2687: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2688: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2689: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2690: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2693: Local authenticated attacker may gain elevated privileges
    via guest additions
  • CVE-2018-2694: Local authenticated attacker may gain elevated privileges
  • CVE-2018-2698: Local authenticated attacker may gain elevated privileges

The following bug fixes are included:

  • fix occasional screen corruption when host screen resolution is changed
  • increase proposed disk size when creating new VMs for Windows 7 and newer
  • fix broken communication with certain devices on Linux hosts
  • Fix problems using 256MB VRAM in raw-mode VMs
  • add HDA support for more exotic guests (e.g. Haiku)
  • fix playback with ALSA backend (5.1.28 regression)
  • fix a problem where OHCI emulation might sporadically drop data transfers
OSVersionArchitecturePackageVersionFilename
openSUSE Leap42.3x86_64virtualbox-host-kmp-default-debuginfo< 5.1.32_k4.4.104_39-42.1virtualbox-host-kmp-default-debuginfo-5.1.32_k4.4.104_39-42.1.x86_64.rpm
openSUSE Leap42.2x86_64virtualbox-websrv-debuginfo< 5.1.32-19.49.1virtualbox-websrv-debuginfo-5.1.32-19.49.1.x86_64.rpm
openSUSE Leap42.2x86_64virtualbox-qt-debuginfo< 5.1.32-19.49.1virtualbox-qt-debuginfo-5.1.32-19.49.1.x86_64.rpm
openSUSE Leap42.3x86_64virtualbox-vnc< 5.1.32-42.1virtualbox-vnc-5.1.32-42.1.x86_64.rpm
openSUSE Leap42.3x86_64virtualbox-guest-x11-debuginfo< 5.1.32-42.1virtualbox-guest-x11-debuginfo-5.1.32-42.1.x86_64.rpm
openSUSE Leap42.2x86_64virtualbox-guest-tools-debuginfo< 5.1.32-19.49.1virtualbox-guest-tools-debuginfo-5.1.32-19.49.1.x86_64.rpm
openSUSE Leap42.2x86_64virtualbox-devel< 5.1.32-19.49.1virtualbox-devel-5.1.32-19.49.1.x86_64.rpm
openSUSE Leap42.3x86_64virtualbox-qt< 5.1.32-42.1virtualbox-qt-5.1.32-42.1.x86_64.rpm
openSUSE Leap42.3x86_64virtualbox-host-kmp-default< 5.1.32_k4.4.104_39-42.1virtualbox-host-kmp-default-5.1.32_k4.4.104_39-42.1.x86_64.rpm
openSUSE Leap42.3x86_64python-virtualbox< 5.1.32-42.1python-virtualbox-5.1.32-42.1.x86_64.rpm
Rows per page:
1-10 of 441

Related

nessus 61
openvas 40
gentoo 1
kaspersky 1
mageia 2
suse 10
debiancve 10
prion 10
cve 10
ubuntucve 10
zdi 6
exploitpack 1
seebug 1
packetstorm 1
zdt 1
debian 3
threatpost 2
amazon 2
redhat 12
centos 5
oraclelinux 3
ubuntu 3
virtuozzo 1
slackware 1
cloudfoundry 1
paloalto 1
nessus
nessus
openSUSE Security Update : virtualbox (openSUSE-2018-75) (Spectre)
2018-01-24 00:00:00
GLSA-201802-01 : VirtualBox: Multiple vulnerabilities
2018-02-12 00:00:00
Oracle VM VirtualBox 5.1.x < 5.1.32 / 5.2.x < 5.2.6 (January 2018 CPU)
2018-01-17 00:00:00
openvas
openvas
openSUSE: Security Advisory for virtualbox (openSUSE-SU-2018:0187-1)
2018-01-24 00:00:00
Oracle VirtualBox Security Updates (jan2018-3236628) - Windows
2018-01-17 00:00:00
Mageia: Security Advisory (MGASA-2018-0101)
2022-01-28 00:00:00
gentoo
gentoo
VirtualBox: Multiple vulnerabilities
2018-02-11 00:00:00
kaspersky
kaspersky
KLA11179 Multiple vulnerabilities in Oracle VM VirtualBox
2018-01-18 00:00:00
mageia
mageia
Updated virtualbox packages fix security vulnerabilities
2018-01-26 00:04:19
Updated microcode packages fix security vulnerability
2018-05-29 22:41:14
suse
suse
Security update for kbuild, virtualbox (important)
2018-08-27 00:07:57
Security update for qemu (important)
2018-01-05 18:10:57
Security update for ucode-intel (important)
2018-03-16 18:09:28
debiancve
debiancve
CVE-2018-2676
2018-01-18 02:29:00
CVE-2018-2693
2018-01-18 02:29:00
CVE-2018-2685
2018-01-18 02:29:00
prion
prion
Buffer overflow
2018-01-18 02:29:00
Buffer overflow
2018-01-18 02:29:00
Buffer overflow
2018-01-18 02:29:00
cve
cve
CVE-2018-2676
2018-01-18 02:29:00
CVE-2018-2687
2018-01-18 02:29:00
CVE-2018-2693
2018-01-18 02:29:00
ubuntucve
ubuntucve
CVE-2018-2688
2018-01-18 00:00:00
CVE-2018-2687
2018-01-18 00:00:00
CVE-2018-2676
2018-01-18 00:00:00
zdi
zdi
Oracle VirtualBox crServerDispatchCallLists Integer Overflow Privilege Escalation Vulnerability
2018-01-18 00:00:00
Oracle VirtualBox crServerDispatchDeleteTextures Integer Overflow Privilege Escalation Vulnerability
2018-01-18 00:00:00
Oracle VirtualBox crUnpackPolygonStipple Untrusted Pointer Dereference Privilege Escalation Vulnerability
2018-01-18 00:00:00
exploitpack
exploitpack
Oracle VirtualBox 5.1.30 5.2-rc1 - Guest to Host Escape
2018-01-24 00:00:00
seebug
seebug
Oracle VirtualBox Multiple Guest to Host Escape Vulnerabilities(CVE-2018-2698)
2018-01-26 00:00:00
packetstorm
packetstorm
Oracle VirtualBox Guest To Host Escape
2018-01-24 00:00:00
zdt
zdt
Oracle VirtualBox < 5.1.30 / < 5.2-rc1 - Guest to Host Escape Vulnerability
2018-01-25 00:00:00
debian
debian
[SECURITY] [DLA 1349-1] linux-tools security update
2018-04-16 22:31:08
[SECURITY] [DLA 1362-1] gcc-4.9-backport new package
2018-04-25 16:19:40
[SECURITY] [DSA 4179-1] linux-tools security update
2018-04-24 13:15:06
threatpost
threatpost
New Spectre-Level Flaw Targets Return Stack Buffer
2018-07-23 18:27:20
Intel Halts Spectre Fixes On Older Chips, Citing Limited Ecosystem Support
2018-04-04 15:18:47
amazon
amazon
Important: linux-firmware
2018-02-20 21:46:00
Important: qemu-kvm
2018-02-07 18:49:00
redhat
redhat
(RHSA-2018:0050) Important: vdsm security update
2018-01-05 15:36:32
(RHSA-2018:0029) Important: libvirt security update
2018-01-04 19:31:42
(RHSA-2018:0109) Important: libvirt security update
2018-01-22 10:05:55
centos
centos
libvirt security update
2018-01-04 19:54:04
microcode_ctl security update
2018-01-17 14:59:21
microcode_ctl security update
2018-01-04 11:40:52
oraclelinux
oraclelinux
qemu-kvm security update
2018-01-04 00:00:00
microcode_ctl security update
2018-01-17 00:00:00
qemu-kvm security update
2018-01-04 00:00:00
ubuntu
ubuntu
intel-microcode update
2018-03-29 00:00:00
libvirt update
2018-02-07 00:00:00
Intel Microcode update
2018-01-11 00:00:00
virtuozzo
virtuozzo
Kernel update: new kernel 3.10.0-693.21.1.vz7.46.7, Virtuozzo 7.0 Update 7 Hotfix 2 (7.0.7-453)
2018-04-28 00:00:00
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2018-02-07 06:34:12
cloudfoundry
cloudfoundry
USN-3690-2: AMD Microcode regression | Cloud Foundry
2018-07-19 00:00:00
paloalto
paloalto
Meltdown and Spectre update for WildFire-500 Appliance
2018-05-15 21:35:00

0.975 High

EPSS

Percentile

100.0%

JSON
Related for OPENSUSE-SU-2018:0187-1
nessus61openvas40gentoo1kaspersky1mageia2suse10debiancve10prion10cve10ubuntucve10zdi6exploitpack1seebug1packetstorm1zdt1debian3threatpost2amazon2redhat12centos5oraclelinux3ubuntu3virtuozzo1slackware1cloudfoundry1paloalto1