Re: [SECURITY] [DSA 3359-1] virtualbox security update
On 09/13/2015 10:47 PM, Moritz Muehlenhoff wrote:
> -------------------------------------------------------------------------
> Debian Security Advisory DSA-3359-1 security@debian.org
> https://www.debian.org/security/ Moritz Muehlenhoff
> September 13, 2015 https://www.debian.org/security/faq
> -------------------------------------------------------------------------
>
> Package : virtualbox
> CVE ID : CVE-2015-2594
>
> This update fixes an unspecified security issue in VirtualBox related to
> guests using bridged networking via WiFi. Oracle no longer provides
> information on specific security vulnerabilities in VirtualBox. To still
> support users of the already released Debian releases we've decided to
> update these to the respective 4.1.40 and 4.3.30 bugfix releases.
>
> For the oldstable distribution (wheezy), this problem has been fixed
> in version 4.1.40-dfsg-1+deb7u1.
>
> For the stable distribution (jessie), this problem has been fixed in
> version 4.3.30-dfsg-1+deb8u1.
>
> For the testing distribution (stretch), this problem has been fixed
> in version 4.3.30-dfsg-1.
>
> For the unstable distribution (sid), this problem has been fixed in
> version 4.3.30-dfsg-1.
>
> We recommend that you upgrade your virtualbox packages.
>
> Further information about Debian Security Advisories, how to apply
> these updates to your system and frequently asked questions can be
> found at: https://www.debian.org/security/
>
> Mailing list: debian-security-announce@lists.debian.org
Dear maintainer(s),
virtualbox-guest-additions-iso package version is 4.3.18. Are you going
to update the package to version 4.3.30?
Kind regards
Georgi
Reply to: