openSUSE Security Update : virtualbox (openSUSE-2015-550) (Venom)

This script is Copyright (C) 2015 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

- Version bump to 4.2.32 bnc#938408 CVE-2015-2594

- Storage: fixed a crash when taking snapshots (4.2.30
regression)

- ExtPack: don't fail if the TMP directory contains
non-latin1 characters (bug #14159)

- Main: implemented dedicated event processing queue

- Linux hosts: fixed a bug which made the netfilter driver
ignore certain events (bug #12264)

Also included from Version bump to 4.2.30 bnc#935900 CVE-2015-3456 :

- Various small fixes here and there

- Fix the multiinstall on kernel modules to avoid
conflicts bnc#925663

- Drop smap.diff fails to apply to the latest release

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=925663
https://bugzilla.opensuse.org/show_bug.cgi?id=935900
https://bugzilla.opensuse.org/show_bug.cgi?id=938408

Solution :

Update the affected virtualbox packages.

Risk factor :

High / CVSS Base Score : 7.7
(CVSS2#AV:A/AC:L/Au:S/C:C/I:C/A:C)
Public Exploit Available : true

Family: SuSE Local Security Checks

Nessus Plugin ID: 85525 ()

Bugtraq ID:

CVE ID: CVE-2015-2594
CVE-2015-3456

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now