Ubuntu
virtualbox package

CVE-2015-3456

Bug #1456553 reported by Gianfranco Costamagna
262
This bug affects 2 people
Affects Status Importance Assigned to Milestone
virtualbox (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Debdiffs attached

Tags: patch

CVE References

Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :
Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :
Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :
Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :
Revision history for this message
Seth Arnold (seth-arnold) wrote :

Are these patches ready to go? Is there a reason for the bug to be private?

Thanks

Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :

1) yes
2) no

thanks to you!

Seth Arnold (seth-arnold)
information type: Private Security → Public Security
Revision history for this message
Ubuntu Foundations Team Bug Bot (crichton) wrote :

The attachment "vivid.debdiff" seems to be a debdiff. The ubuntu-sponsors team has been subscribed to the bug report so that they can review and hopefully sponsor the debdiff. If the attachment isn't a patch, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are member of the ~ubuntu-sponsors, unsubscribe the team.

[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issue please contact him.]

tags: added: patch
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package virtualbox - 4.3.18-dfsg-2ubuntu3

---------------
virtualbox (4.3.18-dfsg-2ubuntu3) utopic-security; urgency=medium

  * d/p/CVE-2015-3456.patch fix for CVE-2015-3456 a.k.a. VENOM
    (Closes: #785424, LP: #1456553)

 -- Gianfranco Costamagna <email address hidden> Tue, 19 May 2015 12:08:46 +0200

Changed in virtualbox (Ubuntu):
status: New → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package virtualbox - 4.1.12-dfsg-2ubuntu0.10

---------------
virtualbox (4.1.12-dfsg-2ubuntu0.10) precise-security; urgency=medium

  * d/p/CVE-2015-3456.patch fix for CVE-2015-3456 a.k.a. VENOM
    (Closes: #785424, LP: #1456553)

 -- Gianfranco Costamagna <email address hidden> Tue, 19 May 2015 12:15:56 +0200

Changed in virtualbox (Ubuntu):
status: New → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package virtualbox - 4.3.26-dfsg-2ubuntu2

---------------
virtualbox (4.3.26-dfsg-2ubuntu2) vivid-security; urgency=medium

  * d/p/CVE-2015-3456.patch fix for CVE-2015-3456 a.k.a. VENOM
    (Closes: #785424, LP: #1456553)

 -- Gianfranco Costamagna <email address hidden> Tue, 19 May 2015 12:05:52 +0200

Changed in virtualbox (Ubuntu):
status: New → Fix Released
Revision history for this message
Seth Arnold (seth-arnold) wrote :

The updates have been published, thanks LocutusOfBorg!

To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.