Security update for kbuild, virtualbox (important)

2018-08-27T00:07:57
ID OPENSUSE-SU-2018:2524-1
Type suse
Reporter Suse
Modified 2018-08-27T00:07:57

Description

This update for kbuild, virtualbox fixes the following issues:

kbuild changes:

  • Update to version 0.1.9998svn3110
  • Do not assume glibc glob internals
  • Support GLIBC glob interface version 2
  • Fix build failure (boo#1079838)
  • Fix build with GCC7 (boo#1039375)
  • Fix build by disabling vboxvideo_drv.so

virtualbox security fixes (boo#1101667, boo#1076372):

  • CVE-2018-3005
  • CVE-2018-3055
  • CVE-2018-3085
  • CVE-2018-3086
  • CVE-2018-3087
  • CVE-2018-3088
  • CVE-2018-3089
  • CVE-2018-3090
  • CVE-2018-3091
  • CVE-2018-2694
  • CVE-2018-2698
  • CVE-2018-2685
  • CVE-2018-2686
  • CVE-2018-2687
  • CVE-2018-2688
  • CVE-2018-2689
  • CVE-2018-2690
  • CVE-2018-2676
  • CVE-2018-2693
  • CVE-2017-5715

virtualbox other changes:

  • Version bump to 5.2.16
  • Use %{?linux_make_arch} when building kernel modules (boo#1098050)
  • Fixed vboxguestconfig.sh script
  • Update warning regarding the security hole in USB passthrough. (boo#1097248)
  • Fixed include for build with Qt 5.11 (boo#1093731)
  • You can find a detailed list of changes here