Alerts This Week
Warning Icon 1 681
Alerts This Week
Warning Icon 1 681

openSUSE 15.6: 2024:0364-1 important: virtualbox network boot fix

opensuse
Calendar Grey November 10, 2024
Dist Opensuse Esm H88
openSUSE issued a crucial Security Update for virtualbox, targeting significant vulnerabilities and providing essential patches to improve overall system durability and safeguard user data.
An update that solves four vulnerabilities and has one errata is now available

Description

This update for virtualbox fixes the following issues:

Update to release 7.1.4:

* NAT: Fixed DHCP problems with certain guests when domain is empty

* VMSVGA: Improved flickering, black screen and other screen update issues

with recent Linux kernels

* Linux Guest Additions: Introduce initial support for kernel 6.12

* EFI: Added missing LsiLogic MPT SCSI driver again to fix booting from

devices attached to this device if the EFI firmware is used (7.1.0

regression)

* EFI: Restored broken network boot support (7.1.0 regression)

* Adressed CVE-2024-21248 [boo#1231735], CVE-2024-21273 [boo#1231736],

CVE-2024-21259 [boo#1231737], CVE-2024-21263 [boo#1231738]

- Make the Extension Pack work with our compiler flags and RT_NOEXCEPT

choices. [boo#1231225]

Update to release 7.1:

* The GUI now offers a selection between Basic and Experienced user level

with reduced or full UI functionality.

* VRDE: If user does not set up TLS...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory important network boot openSUSE virtualbox screen update

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.6:

zypper in -t patch openSUSE-2024-364=1

- openSUSE Backports SLE-15-SP6:

zypper in -t patch openSUSE-2024-364=1

Package List

- openSUSE Leap 15.6 (x86_64):

python3-virtualbox-7.1.4-lp156.2.4.1

python3-virtualbox-debuginfo-7.1.4-lp156.2.4.1

virtualbox-7.1.4-lp156.2.4.1

virtualbox-debuginfo-7.1.4-lp156.2.4.1

virtualbox-debugsource-7.1.4-lp156.2.4.1

virtualbox-devel-7.1.4-lp156.2.4.1

virtualbox-guest-tools-7.1.4-lp156.2.4.1

virtualbox-guest-tools-debuginfo-7.1.4-lp156.2.4.1

virtualbox-kmp-debugsource-7.1.4-lp156.2.4.1

virtualbox-kmp-default-7.1.4_k6.4.0_150600.23.25-lp156.2.4.1

virtualbox-kmp-default-debuginfo-7.1.4_k6.4.0_150600.23.25-lp156.2.4.1

virtualbox-qt-7.1.4-lp156.2.4.1

virtualbox-qt-debuginfo-7.1.4-lp156.2.4.1

virtualbox-vnc-7.1.4-lp156.2.4.1

virtualbox-websrv-7.1.4-lp156.2.4.1

virtualbox-websrv-debuginfo-7.1.4-lp156.2.4.1

- openSUSE Leap 15.6 (noarch):

virtualbox-guest-desktop-icons-7.1.4-lp156.2.4.1

virtualbox-guest-source-7.1.4-lp156.2.4.1

virtualbox-host-source-7.1.4-lp156.2.4.1

- openSUSE Backports SLE-15-SP6 (aarch64 ppc64le x86_64):

kbuild-0.1.9998+svn3613-bp156.2.3.1

kbuild-debuginfo-0.1.9998+svn3613-bp156.2.3.1

kbui...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2024-21248.html

https://www.suse.com/security/cve/CVE-2024-21259.html

https://www.suse.com/security/cve/CVE-2024-21263.html

https://www.suse.com/security/cve/CVE-2024-21273.html

https://bugzilla.suse.com/1231225

https://bugzilla.suse.com/1231735

https://bugzilla.suse.com/1231736

https://bugzilla.suse.com/1231737

https://bugzilla.suse.com/1231738

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2024:0364-1
Rating: important
Affected Products: openSUSE Backports SLE-15-SP6 openSUSE Leap 15.6 ble.

Topics%20covered

Topics Covered

security advisory important network boot openSUSE virtualbox screen update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here