drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in Oracle VirtualBox
| Name: |
Mehrere Probleme in Oracle VirtualBox |
|
| ID: |
202409-11 |
|
| Distribution: |
Gentoo |
|
| Plattformen: |
Keine Angabe |
|
| Datum: |
Mo, 23. September 2024, 07:46 |
|
| Referenzen: |
https://nvd.nist.gov/vuln/detail/CVE-2023-22098
https://nvd.nist.gov/vuln/detail/CVE-2023-22100
https://nvd.nist.gov/vuln/detail/CVE-2023-22099 |
|
| Applikationen: |
VirtualBox |
|
Originalnachricht |
--===============0807787093672699500==
Content-Type: text/plain; charset="utf-8"
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 202409-11
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Oracle VirtualBox: Multiple Vulnerabilities
Date: September 22, 2024
Bugs: #918524
ID: 202409-11
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
========
Multiple vulnerabilities have been discovered in Oracle VirtualBox, the
worst of which could lead to privilege escalation.
Background
==========
VirtualBox is a powerful virtualization product from Oracle.
Affected packages
=================
Package Vulnerable Unaffected
------------------------ ------------ ------------
app-emulation/virtualbox < 7.0.12 >= 7.0.12
Description
===========
Multiple vulnerabilities have been discovered in Oracle VirtualBox.
Please review the CVE identifiers referenced below for details.
Impact
======
Please review the referenced CVE identifiers for details.
Workaround
==========
There is no known workaround at this time.
Resolution
==========
All Oracle VirtualBox users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose
">=app-emulation/virtualbox-7.0.12"
References
==========
[ 1 ] CVE-2023-22098
https://nvd.nist.gov/vuln/detail/CVE-2023-22098
[ 2 ] CVE-2023-22099
https://nvd.nist.gov/vuln/detail/CVE-2023-22099
[ 3 ] CVE-2023-22100
https://nvd.nist.gov/vuln/detail/CVE-2023-22100
Availability
============
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:
https://security.gentoo.org/glsa/202409-11
Concerns?
=========
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users' machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
https://bugs.gentoo.org.
License
=======
Copyright 2024 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).
The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.
https://creativecommons.org/licenses/by-sa/2.5
--===============0807787093672699500==
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----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=HWeT
-----END PGP SIGNATURE-----
--===============0807787093672699500==--
|
|
|
|
