Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Mageia: 2020-0180 Moderate: VirtualBox Security Update Addresses Issues

mageia
Calendar Grey April 24, 2020
Dist Mageia Esm H88
Mageia's latest VirtualBox upgrade significantly improves security by addressing several vulnerabilities, ensuring stronger protection.
This update provides the upstream 6.0.20 adding support for kernel 5.6 series and fixes the following security vulnerabilities: Oracle VM VirtualBox before 6.0.20 has an easily ex...

Summary

This update provides the upstream 6.0.20 adding support for kernel 5.6 series and fixes the following security vulnerabilities:
Oracle VM VirtualBox before 6.0.20 has an easily exploitable vulnerability that allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data (CVE-2020-2741).
Oracle VM VirtualBox before 6.0.20 has an easily exploitable vulnerability that allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=26506

-

- https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixOVIR

- https://www.cve.org/CVERecord?id=CVE-2020-2741

- https://www.cve.org/CVERecord?id=CVE-2020-2748

- https://www.cve.org/CVERecord?id=CVE-2020-2758

- https://www.cve.org/CVERecord?id=CVE-2020-2894

- https://www.cve.org/CVERecord?id=CVE-2020-2902

- https://www.cve.org/CVERecord?id=CVE-2020-2905

- https://www.cve.org/CVERecord?id=CVE-2020-2907

- https://www.cve.org/CVERecord?id=CVE-2020-2908

- https://www.cve.org/CVERecord?id=CVE-2020-2909

- https://www.cve.org/CVERecord?id=CVE-2020-2910

- https://www.cve.org/CVERecord?id=CVE-2020-2911

- https://www.cve.org/CVERecord?id=CVE-2020-2913

- https://www.cve.org/CVERecord?id=CVE-2020-2914

- https://www.cve.org/CVERecord?id=CVE-2020-2929

- https://www.cve.org/CVERecord?id=CVE-2020-2951

- https://www.cve.org/CVERecord?id=CVE-2020-2958

- https://www.cve.org/CVERecord?id=CVE-2020-2959

Topics%20covered

Topics Covered

security advisory moderate security issue update exploitable Mageia Oracle VM VirtualBox

Resolution

SRPMS

- 7/core/virtualbox-6.0.20-1.mga7

- 7/core/kmod-virtualbox-6.0.20-1.mga7

Publication date: 24 Apr 2020
URL: https://advisories.mageia.org/MGASA-2020-0180.html
Type: security
CVE: CVE-2020-2741, CVE-2020-2748, CVE-2020-2758, CVE-2020-2894, CVE-2020-2902, CVE-2020-2905, CVE-2020-2907, CVE-2020-2908, CVE-2020-2909, CVE-2020-2910, CVE-2020-2911, CVE-2020-2913, CVE-2020-2914, CVE-2020-2929, CVE-2020-2951, CVE-2020-2958, CVE-2020-2959

Topics%20covered

Topics Covered

security advisory moderate security issue update exploitable Mageia Oracle VM VirtualBox

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here