UbuntuUpdates.org

Package "virtualbox"

Name: virtualbox

Description:

x86 virtualization solution - base binaries

Latest version: 4.3.40-dfsg-0ubuntu14.04.1
Release: trusty (14.04)
Level: updates
Repository: multiverse
Homepage: http://www.virtualbox.org/

Links


Download "virtualbox"


Other versions of "virtualbox" in Trusty

Repository Area Version
base multiverse 4.3.10-dfsg-1
security multiverse 4.3.36-dfsg-1+deb8u1ubuntu1.14.04.2
proposed multiverse 4.3.40-dfsg-0ubuntu14.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.3.40-dfsg-0ubuntu14.04.1 2019-03-25 10:06:53 UTC

  virtualbox (4.3.40-dfsg-0ubuntu14.04.1) trusty; urgency=medium

  * New upstream release (LP: #1812671)

 -- Gianfranco Costamagna <email address hidden> Mon, 21 Jan 2019 14:33:14 +0100

Source diff to previous version
1812671 [SRU] Virtualbox in trusty 14.04 is an old version and has many security vulnerabilities

Version: 4.3.36-dfsg-1+deb8u1ubuntu1.14.04.2 2019-01-22 23:06:15 UTC

  virtualbox (4.3.36-dfsg-1+deb8u1ubuntu1.14.04.2) trusty-security; urgency=medium

  * debian/patches/fix-for-guest-to-host-escape-vulnerability.patch:
    - Apply patch for guest-to-host escape vulnerability (LP: #1809156)
    - CVE-2018-3294

 -- Martin Konrad <email address hidden> Wed, 26 Dec 2018 19:41:57 -0500

Source diff to previous version
1809156 E1000 guest to host escape
CVE-2018-3294 Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). The supported version that is affected is Prior to

Version: 4.3.36-dfsg-1+deb8u1ubuntu1.14.04.1 2016-02-01 09:06:25 UTC

  virtualbox (4.3.36-dfsg-1+deb8u1ubuntu1.14.04.1) trusty-security; urgency=medium

  * Upload to trusty-security (LP: #1538115)

Source diff to previous version
1538115 virtualbox SRU for CVEs

Version: 4.3.34-dfsg-1+deb8u1ubuntu1.14.04.1 2015-11-25 16:06:37 UTC

  virtualbox (4.3.34-dfsg-1+deb8u1ubuntu1.14.04.1) trusty-security; urgency=medium

  * New upstream bugfix release. (LP: #1517161)
    - drop patches and rebase with debian jessie-security upload
    - all CVEs are fixed in the upstream import, drop all the CVE
      patches.

 -- Gianfranco Costamagna Tue, 17 Nov 2015 14:44:04 +0100

Source diff to previous version
1517161 virtualbox SRU for CVE

Version: 4.3.10-dfsg-1ubuntu5 2015-05-22 07:08:05 UTC

  virtualbox (4.3.10-dfsg-1ubuntu5) trusty-security; urgency=medium

  * d/p/CVE-2015-3456.patch fix for CVE-2015-3456 a.k.a. VENOM
    (Closes: #785424, LP: #1456553)

 -- Gianfranco Costamagna <email address hidden> Tue, 19 May 2015 12:14:01 +0200

1456553 CVE-2015-3456
785424 virtualbox: CVE-2015-3456: floppy driver host code execution - Debian Bug report logs
CVE-2015-3456 vulnerability in QEMU's virtual Floppy Disk Controller



About   -   Send Feedback to @ubuntu_updates