VirtualBox: Multiple Vulnerabilities

VirtualBox: Multiple Vulnerabilities Multiple vulnerabilities have been found in VirtualBox, allowing local attackers to escalate their privileges or cause a Denial of Service condition. virtualbox 2014-01-20 2014-01-20 434872 498166 local 4.2.22 4.2.22 4.2.22 4.2.22

VirtualBox is a powerful virtualization product from Oracle.

Multiple vulnerabilities have been discovered in Virtualbox. Please review the CVE identifiers referenced below for details.

A local attacker in a guest virtual machine may be able to escalate privileges or cause a Denial of Service condition.

There is no known workaround at this time.

All virtualbox users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=app-emulation/virtualbox-4.2.22"

All virtualbox-bin users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=app-emulation/virtualbox-bin-4.2.22"

CVE-2012-3221 CVE-2013-5892 CVE-2014-0404 CVE-2014-0405 CVE-2014-0406 CVE-2014-0407 underling ackle