Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.0.32, 4.1.40, 4.2.32, and 4.3.30 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oracle vm virtualbox |
||
debian debian linux 7.0 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
Debian team bit miffed about secretive vuln fixes in hypervisor software
It's not just Microsoft keeping schtum on exactly what's inside its software updates. Oracle is keeping details of security patches for its VirtualBox hypervisor software a secret, members of the Debian team pointed out this week. Back in July, Oracle emitted a big batch of updates for its products, including new features in VirtualBox and a fix for a vulnerability in the application labeled CVE-2015-2594. All we were told at the time about the bug was that it involves guest OSes using bridged n...