ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2015.0228
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2015-0228)
Resumen:	The remote host is missing an update for the 'kmod-vboxadditions, kmod-virtualbox, virtualbox' package(s) announced via the MGASA-2015-0228 advisory.
Descripción:	Summary: The remote host is missing an update for the 'kmod-vboxadditions, kmod-virtualbox, virtualbox' package(s) announced via the MGASA-2015-0228 advisory. Vulnerability Insight: Updated virtualbox packages fixes security vulnerability This update provides the 4.3.28 maintenance release fixing the following security issue: The Floppy Disk Controller (FDC) in QEMU, XEN, KVM and virtualbox allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the FD_CMD_READ_ID, FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM (CVE-2015-3456). For other fixes in the maintenance release, read the referenced changelog. Affected Software/OS: 'kmod-vboxadditions, kmod-virtualbox, virtualbox' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 7.7 CVSS Vector: AV:A/AC:L/Au:S/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3456 BugTraq ID: 74640 http://www.securityfocus.com/bid/74640 Debian Security Information: DSA-3259 (Google Search) http://www.debian.org/security/2015/dsa-3259 Debian Security Information: DSA-3262 (Google Search) http://www.debian.org/security/2015/dsa-3262 Debian Security Information: DSA-3274 (Google Search) http://www.debian.org/security/2015/dsa-3274 https://www.exploit-db.com/exploits/37053/ http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158072.html https://security.gentoo.org/glsa/201602-01 https://security.gentoo.org/glsa/201604-03 https://security.gentoo.org/glsa/201612-27 HPdes Security Advisory: HPSBMU03336 http://marc.info/?l=bugtraq&m=143229451215900&w=2 HPdes Security Advisory: HPSBMU03349 http://marc.info/?l=bugtraq&m=143387998230996&w=2 HPdes Security Advisory: SSRT102076 http://venom.crowdstrike.com/ https://www.arista.com/en/support/advisories-notices/security-advisories/1128-security-advisory-10 RedHat Security Advisories: RHSA-2015:0998 http://rhn.redhat.com/errata/RHSA-2015-0998.html RedHat Security Advisories: RHSA-2015:0999 http://rhn.redhat.com/errata/RHSA-2015-0999.html RedHat Security Advisories: RHSA-2015:1000 http://rhn.redhat.com/errata/RHSA-2015-1000.html RedHat Security Advisories: RHSA-2015:1001 http://rhn.redhat.com/errata/RHSA-2015-1001.html RedHat Security Advisories: RHSA-2015:1002 http://rhn.redhat.com/errata/RHSA-2015-1002.html RedHat Security Advisories: RHSA-2015:1003 http://rhn.redhat.com/errata/RHSA-2015-1003.html RedHat Security Advisories: RHSA-2015:1004 http://rhn.redhat.com/errata/RHSA-2015-1004.html RedHat Security Advisories: RHSA-2015:1011 http://rhn.redhat.com/errata/RHSA-2015-1011.html http://www.securitytracker.com/id/1032306 http://www.securitytracker.com/id/1032311 http://www.securitytracker.com/id/1032917 SuSE Security Announcement: SUSE-SU-2015:0889 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00009.html SuSE Security Announcement: SUSE-SU-2015:0896 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00042.html SuSE Security Announcement: SUSE-SU-2015:0923 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00018.html SuSE Security Announcement: SUSE-SU-2015:0927 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00019.html SuSE Security Announcement: SUSE-SU-2015:0929 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00021.html SuSE Security Announcement: openSUSE-SU-2015:0893 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00013.html SuSE Security Announcement: openSUSE-SU-2015:0894 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00014.html SuSE Security Announcement: openSUSE-SU-2015:0983 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00001.html SuSE Security Announcement: openSUSE-SU-2015:1400 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-08/msg00021.html http://www.ubuntu.com/usn/USN-2608-1
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.