The April 2019 Oracle CPU is out, and VirtualBox 5.2.28 fixes security issues: https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixOVIR
Yeah, I've been planning to switch Mga 6 to VirtualBox 6.0.x too like Cauldron, but I have delayed the decision so far since it has had issues... But I think I'll try with the 6.0.6 that landed earlier today in Cauldron... It would atleast make life easier for Mga7 testers when they get in sync...
So lets try that out: SRPMS: kmod-vboxadditions-6.0.6-1.mga6.src.rpm kmod-virtualbox-6.0.6-1.mga6.src.rpm virtualbox-6.0.6-1.mga6.src.rpm i586: dkms-vboxadditions-6.0.6-1.mga6.noarch.rpm dkms-virtualbox-6.0.6-1.mga6.noarch.rpm python-virtualbox-6.0.6-1.mga6.i586.rpm vboxadditions-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.i586.rpm vboxadditions-kernel-4.14.106-desktop586-1.mga6-6.0.6-1.mga6.i586.rpm vboxadditions-kernel-4.14.106-server-1.mga6-6.0.6-1.mga6.i586.rpm vboxadditions-kernel-desktop586-latest-6.0.6-1.mga6.i586.rpm vboxadditions-kernel-desktop-latest-6.0.6-1.mga6.i586.rpm vboxadditions-kernel-server-latest-6.0.6-1.mga6.i586.rpm virtualbox-6.0.6-1.mga6.i586.rpm virtualbox-devel-6.0.6-1.mga6.i586.rpm virtualbox-guest-additions-6.0.6-1.mga6.i586.rpm virtualbox-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.i586.rpm virtualbox-kernel-4.14.106-desktop586-1.mga6-6.0.6-1.mga6.i586.rpm virtualbox-kernel-4.14.106-server-1.mga6-6.0.6-1.mga6.i586.rpm virtualbox-kernel-desktop586-latest-6.0.6-1.mga6.i586.rpm virtualbox-kernel-desktop-latest-6.0.6-1.mga6.i586.rpm virtualbox-kernel-server-latest-6.0.6-1.mga6.i586.rpm x86_64: dkms-vboxadditions-6.0.6-1.mga6.noarch.rpm dkms-virtualbox-6.0.6-1.mga6.noarch.rpm python-virtualbox-6.0.6-1.mga6.x86_64.rpm vboxadditions-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.x86_64.rpm vboxadditions-kernel-4.14.106-server-1.mga6-6.0.6-1.mga6.x86_64.rpm vboxadditions-kernel-desktop-latest-6.0.6-1.mga6.x86_64.rpm vboxadditions-kernel-server-latest-6.0.6-1.mga6.x86_64.rpm virtualbox-6.0.6-1.mga6.x86_64.rpm virtualbox-devel-6.0.6-1.mga6.x86_64.rpm virtualbox-guest-additions-6.0.6-1.mga6.x86_64.rpm virtualbox-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.x86_64.rpm virtualbox-kernel-4.14.106-server-1.mga6-6.0.6-1.mga6.x86_64.rpm virtualbox-kernel-desktop-latest-6.0.6-1.mga6.x86_64.rpm virtualbox-kernel-server-latest-6.0.6-1.mga6.x86_64.rpm
Assignee: tmb => qa-bugsCC: (none) => tmb
on mga6-64 plasma packages installed cleanly: dkms-virtualbox-6.0.6-1.mga6.noarch virtualbox-6.0.6-1.mga6.x86_64 virtualbox-kernel-desktop-latest-6.0.6-1.mga6.x86_64 virtualbox-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.x86_64 # dkms status virtualbox, 6.0.6-1.mga6, 4.14.106-desktop-1.mga6, x86_64: installed virtualbox, 6.0.6-1.mga6, 4.14.106-desktop-1.mga6, x86_64: installed-binary from 4.14.106-desktop-1.mga6 virtualbox, 5.2.24-1.mga6, 4.14.104-desktop-2.mga6, x86_64: installed-binary from 4.14.104-desktop-2.mga6 vbox launched normally extension pack updated cleanly updated vboxadditions on mga6-32 and mga6-64 clients which re-launched normally win7 and winxp clients updated and re-lauched normally no regressions noted OK for mga6-64 on this system: Machine: Device: desktop System: Dell product: Precision Tower 3620 Mobo: Dell model: 09WH54 v: A00 UEFI [Legacy]: Dell v: 2.11.0 CPU: Quad core Intel Core i7-6700 (-HT-MCP-) Graphics: Card: Intel HD Graphics 530
CC: (none) => jim
On real hardware, M6.1, Plasma, 64-bit Package(s) under test: virtualbox default install of packages: kernel-desktop-latest virtualbox vboxadditions-kernel-desktop-latest virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo kernel-desktop-devel-latest cpupower The following 9 packages are going to be installed: - vboxadditions-kernel-4.14.106-desktop-1.mga6-5.2.24-9.mga6.x86_64 - vboxadditions-kernel-desktop-latest-5.2.24-9.mga6.x86_64 - virtualbox-5.2.24-1.mga6.x86_64 - virtualbox-doc-5.2.24-1.mga6.noarch - virtualbox-guest-additions-5.2.24-1.mga6.x86_64 - virtualbox-kernel-4.14.106-desktop-1.mga6-5.2.24-9.mga6.x86_64 - virtualbox-kernel-desktop-latest-5.2.24-9.mga6.x86_64 - x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 - xrandr-1.5.0-1.mga6.x86_64 [root@localhost wilcal]# uname -a Linux localhost 4.14.106-desktop-1.mga6 #1 SMP Thu Mar 14 18:01:29 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi virtualbox Package virtualbox-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-guest-additions Package virtualbox-guest-additions-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest Package virtualbox-kernel-desktop-latest-5.2.24-9.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-nvidia-current Package dkms-nvidia-current-390.87-1.mga6.nonfree.x86_64 is already installed [root@localhost wilcal]# urpmi cpupower Package cpupower-4.14.106-1.mga6.x86_64 is already installed [root@localhost wilcal]# lspci -k 01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1) Subsystem: Gigabyte Technology Co., Ltd Device 3518 Kernel driver in use: nvidia Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current Mageia-6.1-LiveDVD-Xfce-i586-DVD.iso Runs as a Vbox client. Boots to a working desktop. Common apps work. Screen sizes are correct. install from updates testing: virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo kernel-desktop-devel-latest The following 10 packages are going to be installed: - dkms-virtualbox-5.2.24-1.mga6.noarch - kernel-desktop-devel-4.14.110-1.mga6-1-1.mga6.x86_64 - kernel-desktop-devel-latest-4.14.110-1.mga6.x86_64 - meta-task-6-3.3.mga6.noarch - vboxadditions-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.x86_64 - vboxadditions-kernel-desktop-latest-6.0.6-1.mga6.x86_64 - virtualbox-6.0.6-1.mga6.x86_64 - virtualbox-guest-additions-6.0.6-1.mga6.x86_64 - virtualbox-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.x86_64 - virtualbox-kernel-desktop-latest-6.0.6-1.mga6.x86_64 [root@localhost wilcal]# uname -a Linux localhost 4.14.106-desktop-1.mga6 #1 SMP Thu Mar 14 18:01:29 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi virtualbox Package virtualbox-6.0.6-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-guest-additions Package virtualbox-guest-additions-6.0.6-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest Package virtualbox-kernel-desktop-latest-6.0.6-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-nvidia-current Package dkms-nvidia-current-390.87-1.mga6.nonfree.x86_64 is already installed [root@localhost wilcal]# urpmi cpupower Package cpupower-4.14.110-1.mga6.x86_64 is already installed [wilcal@localhost ~]$ lspci -k 01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1) Subsystem: Gigabyte Technology Co., Ltd Device 3518 Kernel driver in use: nvidia Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current Error: Previously created: Mageia-6.1-LiveDVD-Xfce-i586-DVD.iso Runs as a Vbox client. Vbox fails to launch previously created Client and displays the following error message: VirtualBox - Error in supR3HardenedMainInitRuntime RTR3InitEx failed with rc=-1912 (rc=-1912) The VirtualBox kernel modules do not match this version of VirtualBox. The installation of VirtualBox was apparently not successful. Executing '/sbin/vboxconfig' may correct this. Make sure that you are not mixing builds of VirtualBox from different sources. where: supR3HardenedMainInitRuntime what: 4 VERR_VM_DRIVER_VERSION_MISMATCH (-1912) - The installed support driver doesn't match the version of the user. Attempting to create a new Client using the same iso results in the same error message. Hardware used: Intel Core i5-4460 Haswell Quad-Core 3.2GHz LGA 115 Gigabyte GA-B85M-D3H LGA 1150 Intel B85 chipset Integrated Graphics Processor - Intel HD Graphics support Audito chipset - Realtek ALC892, 7.1 channels Corsair Vengeance 8GB ( 2 x 4GB ) 240-pin DDR3 SDRAM 1600
CC: (none) => wilcal.int
@wilcal You are running kernel 4.14.106, but you installed devel-4.14.110
@wilcal you also need dkms-virtualbox-6.0.6-1
Thanks James On real hardware, M6.1, Plasma, 64-bit Package(s) under test: virtualbox default install of packages: kernel-desktop-latest virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo kernel-desktop-devel-latest cpupower The following 9 packages are going to be installed: - vboxadditions-kernel-4.14.106-desktop-1.mga6-5.2.24-9.mga6.x86_64 - vboxadditions-kernel-desktop-latest-5.2.24-9.mga6.x86_64 - virtualbox-5.2.24-1.mga6.x86_64 - virtualbox-doc-5.2.24-1.mga6.noarch - virtualbox-guest-additions-5.2.24-1.mga6.x86_64 - virtualbox-kernel-4.14.106-desktop-1.mga6-5.2.24-9.mga6.x86_64 - virtualbox-kernel-desktop-latest-5.2.24-9.mga6.x86_64 - x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 - xrandr-1.5.0-1.mga6.x86_64 [root@localhost wilcal]# uname -a Linux localhost 4.14.106-desktop-1.mga6 #1 SMP Thu Mar 14 18:01:29 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi virtualbox Package virtualbox-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-guest-additions Package virtualbox-guest-additions-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest Package virtualbox-kernel-desktop-latest-5.2.24-9.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-nvidia-current Package dkms-nvidia-current-390.87-1.mga6.nonfree.x86_64 is already installed [root@localhost wilcal]# urpmi cpupower Package cpupower-4.14.106-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi kernel-desktop-devel-latest Package kernel-desktop-devel-latest-4.14.106-1.mga6.x86_64 is already installed [root@localhost wilcal]# lspci -k 01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1) Subsystem: Gigabyte Technology Co., Ltd Device 3518 Kernel driver in use: nvidia Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current Mageia-6.1-LiveDVD-Xfce-i586-DVD.iso Runs as a Vbox client. Boots to a working desktop. Common apps work. Screen sizes are correct. install from updates testing: virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo kernel-desktop-devel-latest You are running kernel 4.14.106, but you installed devel-4.14.110 you also need dkms-virtualbox-6.0.6-1 The following 8 packages are going to be installed: - dkms-virtualbox-6.0.6-1.mga6.noarch - meta-task-6-3.3.mga6.noarch - vboxadditions-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.x86_64 - vboxadditions-kernel-desktop-latest-6.0.6-1.mga6.x86_64 - virtualbox-6.0.6-1.mga6.x86_64 - virtualbox-guest-additions-6.0.6-1.mga6.x86_64 - virtualbox-kernel-4.14.106-desktop-1.mga6-6.0.6-1.mga6.x86_64 - virtualbox-kernel-desktop-latest-6.0.6-1.mga6.x86_64 The following 10 packages are going to be installed: - dkms-virtualbox-5.2.24-1.mga6.noarch - vboxadditions-kernel-4.14.106-desktop-1.mga6-5.2.24-9.mga6.x86_64 - vboxadditions-kernel-desktop-latest-5.2.24-9.mga6.x86_64 - virtualbox-5.2.24-1.mga6.x86_64 - virtualbox-doc-5.2.24-1.mga6.noarch - virtualbox-guest-additions-5.2.24-1.mga6.x86_64 - virtualbox-kernel-4.14.106-desktop-1.mga6-5.2.24-9.mga6.x86_64 - virtualbox-kernel-desktop-latest-5.2.24-9.mga6.x86_64 - x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 - xrandr-1.5.0-1.mga6.x86_64 [root@localhost wilcal]# uname -a Linux localhost 4.14.106-desktop-1.mga6 #1 SMP Thu Mar 14 18:01:29 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi virtualbox Package virtualbox-6.0.6-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-guest-additions Package virtualbox-guest-additions-6.0.6-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest Package virtualbox-kernel-desktop-latest-6.0.6-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.2.24-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-nvidia-current Package dkms-nvidia-current-390.87-1.mga6.nonfree.x86_64 is already installed [root@localhost wilcal]# urpmi cpupower Package cpupower-4.14.110-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-virtualbox Package dkms-virtualbox-6.0.6-1.mga6.noarch is already installed [root@localhost wilcal]# urpmi kernel-desktop-devel-latest Package kernel-desktop-devel-latest-4.14.106-1.mga6.x86_64 is already installed [root@localhost wilcal]# lspci -k 01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1) Subsystem: Gigabyte Technology Co., Ltd Device 3518 Kernel driver in use: nvidia Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current Set Client settings -> Display -> Graphics Controller to VboxVGA Previously created Mageia-6.1-LiveDVD-Xfce-i586-DVD.iso Runs as a Vbox client. Boots to a working desktop. Common apps work. Screen sizes are correct. Mageia-6.1-LiveDVD-GNOME-x86_64-DVD.iso Runs as a Vbox client. Boots to a working desktop. Common apps work. Screen sizes are correct. Mageia-7-beta3-x86_64.iso Installs, runs and updates as a Vbox client Reboots to a working desktop Screen sizes are correct.
Host system: Athlon X2 7750 processor, 8GB RAM, nvidia 340 graphics, Atheros wifi. Running 64-bit Mga6 Plasma, using the server kernel. Guest under test: 64-bit Mga7 Plasma, fully updated as of a few minutes ago. Two shared folders set up to automount. Before attempting the update I started the M7 guest, got the pending 333 updates, including another new kernel and vbox additions 6.0.6-2(more recent than the versions under test here). I then rebooted into the new kernel. Shared folders did not auto-mount until I started the vboxadd-timesync service manually in the guest. Before leaving to update the host, I disabled the service again, to test if starting it is the default in the newer version. The following 3 packages are going to be installed: - virtualbox-6.0.6-1.mga6.x86_64 - virtualbox-kernel-4.14.106-server-1.mga6-6.0.6-1.mga6.x86_64 - virtualbox-kernel-server-latest-6.0.6-1.mga6.x86_64 (@James: dkms-virtualbox and the kernel-devel packages aren't needed unless the kernel modules are to be built locally. I am relying on the pre-built kmods that we supply.) Packages installed cleanly, and I was able to update the extension pack using the resulting vbox gui. The test guest started normally, but shared folders were not automounted. Once again, I had to manually start the above service before the folders would automount. Other than that, it looks good. I believe the Mga6 packages need to be rebuilt to the 6.0.6-2 version currently in Cauldron before automounting of shared folders will be as it is supposed to be.
CC: (none) => andrewsfarm
As I think about it, as long as nothing else pops up I would be OK with this going out even if auto-mounting of shared folders in Mageia 7 guests has to be manually activated for now. If it didn't work at all it would be different - but it DOES work, just not by default. This is because of the hectic work that's being done on Mageia 7 to get it ready for version freeze, and because VirtualBox should be updated to 6.0.6 in Mageia 6 to facilitate upgrade installs of Mageia 7. A new bug can be filed later to make auto-mounting more... automatic.
§ Just wondering: Is the 3D acceleration Bug 10442 handled some way now? (I do not test nor need myself) § Still valid for me: Bug 18962 - VirtualBox GUI Manager fails to install extension pack - The usual manual workaround works. But then in the guest: § Problem: I boot my old MSWin7 virtual machine, and in that machines window frame menu i select to insert the guest additions iso, and i let it download it ( https://download.virtualbox.org/virtualbox/6.0.6/VBoxGuestAdditions_6.0.6.iso ) but then it fails with some network connection failure (i forgot to take screenshot) tried several times. It seems it fail to mount the iso? In the same guest system windows update and firefox surfing works, and there are gigabytes free in "C:", as well as on host partitions. Workaround: I wget the file in a terminal on host, and using VirtualBox GUI i "put it in the CD drive", and it autoplayed in guest and worked.
CC: (none) => fri
I never see Bug 18962, but I can confirm that last problem. I will see if I can get a screenshot and file a new bug, as this affects both Cauldron and Mageia 6.
Thanks. I see you opened Bug 24696 for that. :)
Just a few notes for Virtualbox 5.2 -> 6.0. in case for an upgrade. I noticed that in 6.0 the behaviour is changed in HiDPI mode. Dunno if due to older QT with respect to cauldron, but the display now tries to match the original screen size, resulting in being unbearable slow (this is not related to the Display->Scale Factor option, nor the View/Scaled Mode option of the View Menu. In 5.2.28, the behaviour is the old one, and there is no degrading, so it seems better for mga6. Also, both in VBox 6.0 and 5.2.28 the code of HDA audio was touched upstream and not yet fixed which would result in audio choppy playing in guest machines (there was already a bug report https://www.virtualbox.org/ticket/18326). As test one can just take vlc and play some audio or audio/video file, it plays, then mute, then plays again and so on. Reverting to AC97 now fixed this, so I think the patch: http://svnweb.mageia.org/packages/cauldron/virtualbox/current/SOURCES/VirtualBox-6.0.0-add-Mageia-support.patch?revision=1354464&view=markup or the corresponding version for 5.2.X, should be reverted back to AudioControllerType_AC97 for Mageia guests. Sorry for the noise, as we had reverted to HDA recently, but this seems a flip-flop :-)
CC: (none) => ghibomgx
Thank you for your comments, Giuseppe. It's true that there are still some problems with Vbox 6.0.x, both here and in Cauldron. But, they are being worked on in Cauldron, and as fixes are found they will be passed along to Mga6, even after Mga7 is released. In my opinion, updating Mga6 to Vbox 6.x has two important advantages. First, it facilitates upgrade installs from Mga6 to Mga7. But second, and just as important, it reduces the future workload of the maintainer (tmb) to just one version instead of two. And let's face it, tmb is already doing so much for Mageia that he doesn't need more to keep watch over than he already has.
This update isn't perfect, but I'm inclined to give it a 64-bit OK and validate it anyway. Tmb, if you have a revised update in the works, please re-open. Otherwise, I'd say new bugs can be filed against this one as they are discovered.
Whiteboard: (none) => MGA6-64-OKKeywords: (none) => validated_updateCC: (none) => sysadmin-bugs
(In reply to Thomas Andrews from comment #14) > Thank you for your comments, Giuseppe. > > It's true that there are still some problems with Vbox 6.0.x, both here and > in Cauldron. But, they are being worked on in Cauldron, and as fixes are > found they will be passed along to Mga6, even after Mga7 is released. > > In my opinion, updating Mga6 to Vbox 6.x has two important advantages. > First, it facilitates upgrade installs from Mga6 to Mga7. But second, and > just as important, it reduces the future workload of the maintainer (tmb) to > just one version instead of two. And let's face it, tmb is already doing so > much for Mageia that he doesn't need more to keep watch over than he already > has. Of course we truly appreciate the tmb's efforts done on this.
Advisory, committed to svn: type: security subject: Virtualbox 6.0.6 fixes security vulnerabilities CVE: - CVE-2019-2574 - CVE-2019-2656 - CVE-2019-2657 - CVE-2019-2678 - CVE-2019-2679 - CVE-2019-2680 - CVE-2019-2690 - CVE-2019-2696 - CVE-2019-2703 - CVE-2019-2721 - CVE-2019-2722 - CVE-2019-2723 src: 6: core: - kmod-vboxadditions-6.0.6-1.mga6 - kmod-virtualbox-6.0.6-1.mga6 - virtualbox-6.0.6-1.mga6 description: | This update provides an update to the new Virtualbox 6.0 branch, currently 6.0.6. It also fixes the following security issues. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data (CVE-2019-2574). Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox (CVE-2019-2656, CVE-2019-2657, CVE-2019-2680, CVE-2019-2696, CVE-2019-2703, CVE-2019-2721, CVE-2019-2722, CVE-2019-2723 Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data (CVE-2019-2678). Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox and unauthorized read access to a subset of Oracle VM VirtualBox accessible data (CVE-2019-2679). Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox (CVE-2019-2690). For info about other changes in this update, see the referenced changelog. references: - https://bugs.mageia.org/show_bug.cgi?id=24683 - https://www.virtualbox.org/wiki/Changelog-6.0 - https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixOVIR
Keywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2019-0151.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED