[Pkg-virtualbox-devel] Bug#698292: Bug#698292: virtualbox: CVE-2013-0420
Frank Mehnert
frank.mehnert at oracle.com
Wed Jan 16 13:39:50 UTC 2013
Hi,
On Wednesday 16 January 2013 13:59:57 Moritz Muehlenhoff wrote:
> Package: virtualbox
> Severity: grave
> Tags: security
> Justification: user security hole
>
> The latest VirtualBox update round fixed an unspecified security issue:
> http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
>
> Can you contact upstream for an isolated patch to apply to Wheezy?
The fix can be found in
https://www.virtualbox.org/changeset/44055/vbox
Please ignore the change in DevVGA.h, this change is not necessary.
Kind regards,
Frank
--
Dr.-Ing. Frank Mehnert | Software Development Director, VirtualBox
ORACLE Deutschland B.V. & Co. KG | Werkstr. 24 | 71384 Weinstadt, Germany
Hauptverwaltung: Riesstr. 25, D-80992 München
Registergericht: Amtsgericht München, HRA 95603
Geschäftsführer: Jürgen Kunz
Komplementärin: ORACLE Deutschland Verwaltung B.V.
Hertogswetering 163/167, 3543 AS Utrecht, Niederlande
Handelsregister der Handelskammer Midden-Niederlande, Nr. 30143697
Geschäftsführer: Alexander van der Ven, Astrid Kepper, Val Maher
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-virtualbox-devel/attachments/20130116/7d1e3518/attachment-0001.pgp>
More information about the Pkg-virtualbox-devel
mailing list