[SRU] virtualbox crash on network traffic
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
virtualbox (Ubuntu) |
Fix Released
|
Critical
|
Unassigned | ||
Noble |
Fix Released
|
Undecided
|
Unassigned | ||
virtualbox-hwe (Ubuntu) |
Invalid
|
Critical
|
Unassigned | ||
Noble |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Description]
ATTENTION: PLEASE REFRAIN FROM UPGRADING TO 7.0.16 (release pocket) FOR NOW. THIS RELEASE HAS AN ISSUE WHICH MIGHT CAUSE HOST OS CRASH WHEN VM IS CONFIGURED TO USE BRIDGED OR HOST-ONLY NETWORKING. WE WILL SEND AN ANNOUNCEMENT TO MAILING LISTS WHEN FIX WILL BE AVAILABLE FOR DOWNLOAD.
An incomplete allocation variable triggers an R0 memory corruption on kernel, leading to possible host crashes when high amount of traffic is generated
[Fix]
--- a/src/VBox/
+++ b/src/VBox/
@@ -2936,5 +2936,5 @@
union
{
- uint8_t abBuf[sizeof(
+ uint8_t abBuf[sizeof(
INTNETSG SG;
} u;
[ Regression potential ]
* Low, this is just a variable initialization.
[ Test case ]
* Enable Bridge and NAT network interface on the guest and generate a huge amount of traffic. The host *should not crash*
description: | updated |
Changed in virtualbox (Ubuntu): | |
importance: | Undecided → Critical |
Changed in virtualbox-hwe (Ubuntu): | |
importance: | Undecided → Critical |
summary: |
- virtualbox crash on network traffic + [SRU] virtualbox crash on network traffic |
description: | updated |
Changed in virtualbox (Ubuntu): | |
status: | Fix Released → Confirmed |
Changed in virtualbox-hwe (Ubuntu): | |
status: | Confirmed → Invalid |
I understand this is urgent, but this SRU is missing some details.
a) Upstream still has the warning[1] in the "news flash" on the top right of the page, telling users to not upgrade to 7.0.16. In the 7.0.16 changelog[2] page, though, there is no further information.
b) I browsed their bug database, and mailing lists, particularly right after the 7.0.16 announcement, and found no patch or follow-up
c) While not required, the patch in the SRU has no DEP-3 headers. Where is it coming from? I think in this case, given the little amount of information available elsewhere, it would be best if it had such headers. Or, instead, the SRU description of the bug could have more details: upstream bug, upstream commit, perhaps a link to some discussion. Is this fix enough? I found another place in the same file where the same variable is declared, and it does not have the 2* change. Maybe not needed there, but then again, there is no explanation about this patch.
While we are at it, if a new upload would happen, it could also have these changes: dfsg-2ubuntu0. 1
- run update-maintainer
- while at it, the version could be changed to the SRU format, which in this case, would be 7.0.16-
1. https:/ /www.virtualbox .org/ /www.virtualbox .org/wiki/ Changelog- 7.0#v16
2. https:/