[ubuntu/precise-security] virtualbox 4.1.44-dfsg-1+deb7u1ubuntu1 (Accepted)

Tyler Hicks tyhicks at canonical.com
Wed Nov 25 14:37:38 UTC 2015

virtualbox (4.1.44-dfsg-1+deb7u1ubuntu1) precise-security; urgency=medium

  * New upstream release. (LP: #1517161)
    - drop patches and rebase with debian wheezy-security upload
    - all CVEs are fixed in the upstream import, drop all the CVE
  * Add two patches, to comply with build failures (build and module build)
    - fix-ipv6-build.patch
    - fix-module-build.patch

virtualbox (4.1.42-dfsg-1+deb7u1) wheezy-security; urgency=medium

  * New upstream release.
     - Addressed CVE-2015-4813 and CVE-2015-4896

virtualbox (4.1.40-dfsg-1+deb7u1) wheezy-security; urgency=medium

  * New upstream release.
  * Remove all the CVE related patches, and refresh patches.

virtualbox (4.1.18-dfsg-2+deb7u5) wheezy-security; urgency=medium

  * d/p/CVE-2015-3456.patch fix for CVE-2015-3456 a.k.a. VENOM
    (Closes: #785424)

virtualbox (4.1.18-dfsg-2+deb7u4) wheezy-security; urgency=medium

  [ Frank Mehnert ]
  * fix security vulnerabilities (Closes: #775888)
     CVE-2015-0377, CVE-2015-0418
     - debian/patches/CVE-2015-0{377,418}.patch

virtualbox (4.1.18-dfsg-2+deb7u3) wheezy-security; urgency=high

  * Fix memory corruption vulnerabilities in 3D acceleration. (Closes: #741602)
    - CVE-2014-0981, CVE-2014-0983
    - Backport fixes from version 4.1.32 in debian/patches/CVE-2014-0981.patch
      and debian/patches/CVE-2014-0983.patch

virtualbox (4.1.18-dfsg-2+deb7u2) wheezy-security; urgency=high

  * Apply fixes from the January 2014 security advisory. (Closes: #735410)
    - Add debian/patches/38-security-fixes-2014-01.patch
    - CVE-2013-5892, CVE-2014-0407, CVE-2014-0406, CVE-2014-0404

virtualbox (4.1.18-dfsg-2+deb7u1) unstable; urgency=high

  * Fix build failure with the Debian wheezy kernel which backports the drm
    subsystem from Linux 3.4. (Closes: #703358)
  * Set urgency to high as it fixes an RC bug.

virtualbox (4.1.18-dfsg-2) unstable; urgency=high

  [ John Paul Adrian Glaubitz ]
  * Include patch to fix virtual graphics device user
    vulnerability CVE-2013-0420. (Closes: #698292)

virtualbox (4.1.18-dfsg-1.1) unstable; urgency=high

  * Non-maintainer upload.
  * Fix cve-2012-3221: missing privilege check for task gate switches
    (closes: 690777).

virtualbox (4.1.18-dfsg-1) unstable; urgency=low

  * New upstream release.
    - Fixes host freezes with 64-bit guests on 32-bit hosts. (LP: #1012627)
    - Fixes odd permissions of files in shared folders. (LP: #1013368)
  * Drop 37-fix-unregister-netdevice.patch, fixed upstream.
  * Compress orig tarball and binary packages with xz.

virtualbox (4.1.16-dfsg-2) unstable; urgency=low

  * Fix vboxnet device unregistration on kernel >= 3.2.18. (LP: #1009156)
    - Add 37-fix-unregister-netdevice.patch, backported from upstream.
  * Switch from python-central to dh_python2. (Closes: #617143)

virtualbox (4.1.16-dfsg-1) unstable; urgency=low

  * New upstream release.
  * Drop 37-fix-build-gcc47.patch, fixed upstream.

virtualbox (4.1.14-dfsg-2) unstable; urgency=low

  * Fix FTBFS with gcc 4.7 on i386.
    - Add 37-fix-build-gcc47.patch

virtualbox (4.1.14-dfsg-1) unstable; urgency=low

  * New upstream release.
    - Drop 36-tarball-respin.patch
  * Fix FTBFS with X Server 1.12. (Closes: #671061)
    - Add 36-fix-ftbfs-xserver-112.patch

Date: 2015-11-23 17:56:14.983571+00:00
Changed-By: LocutusOfBorg <costamagnagianfranco at yahoo.it>
Signed-By: Tyler Hicks <tyhicks at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Precise-changes mailing list