Multiple vulnerabilities have been found in VirtualBox, the worst of which might allow unauthorized changes to some critical or all accessible data.
Package | app-emulation/virtualbox on all architectures |
---|---|
Affected versions | < 5.0.32 |
Unaffected versions | >= 5.0.32 |
VirtualBox is a powerful virtualization product from Oracle.
Multiple vulnerabilities have been discovered in VirtualBox. Please review the CVE identifiers referenced below for details.
An attacker could cause a Denial of Service condition. Additionally, an attacker could create, delete or modify critical or all accessible data.
There is no known workaround at this time.
All VirtualBox users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/virtualbox-5.0.32"
Release date
February 14, 2017
Latest revision
February 14, 2017: 1
Severity
high
Exploitable
local, remote
Bugzilla entries