Debian Virtualbox vulnerabilities

CVE-2014-0406 [LOW] CVE-2014-0406: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0404. Scope: local sid: resolved (fixed in 4.3.6-dfsg-1)

CVE-2014-0407 [LOW] CVE-2014-0407: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0405. Scope: local sid: resolved (fixed in 4.3.6-dfsg-1)

CVE-2014-2488 [LOW] CVE-2014-2488: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect confidentiality via unknown vectors related to Core. Scope: local sid: resolved (fixed in 4.3.12-dfsg-1)

CVE-2014-2477 [LOW] CVE-2014-2477: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-2486. Scope: local sid: resolved (fixed in 4.3.12-dfsg-1)

CVE-2014-6588 [LOW] CVE-2014-6588: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than CVE-2014-6589, CVE-2014-6590, CVE-2014-6595, and CVE-2015-0427. Scope: local sid: resolved (fixed in 4.3.18-dfsg

CVE-2014-6589 [LOW] CVE-2014-6589: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than CVE-2014-6588, CVE-2014-6590, CVE-2014-6595, and CVE-2015-0427. Scope: local sid: resolved (fixed in 4.3.18-dfsg

CVE-2014-6590 [LOW] CVE-2014-6590: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than CVE-2014-6588, CVE-2014-6589, CVE-2014-6595, and CVE-2015-0427. Scope: local sid: resolved (fixed in 4.3.18-dfsg

CVE-2014-2487 [MEDIUM] CVE-2014-2487: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.14, when running on Windows, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-4261. Scope: local sid: resolved

CVE-2014-6595 [LOW] CVE-2014-6595: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than CVE-2014-6588, CVE-2014-6589, CVE-2014-6590, and CVE-2015-0427. Scope: local sid: resolved (fixed in 4.3.18-dfsg

CVE-2014-4261 [MEDIUM] CVE-2014-4261: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.14 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-2487. Scope: local sid: resolved

CVE-2013-5892 [LOW] CVE-2013-5892: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.22, and 4.3.6 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core. Scope: local sid: resolved (fixed in 4.3.6-dfsg-1)

CVE-2013-0420 [LOW] CVE-2013-0420: virtualbox - Unspecified vulnerability in the VirtualBox component in Oracle Virtualization 4... Unspecified vulnerability in the VirtualBox component in Oracle Virtualization 4.0, 4.1, and 4.2 allows local users to affect integrity and availability via unknown vectors related to Core. NOTE: The previous information was obtained from the January 2013 Oracle CPU. Oracle has not commented on claims from another vendor that this issue is related to an incorrect co

CVE-2013-3792 [LOW] CVE-2013-3792: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.18, 4.0.20, 4.1.28, and 4.2.18 allows local users to affect availability via unknown vectors related to Core. Scope: local sid: resolved (fixed in 4.2.16-dfsg-1)

CVE-2012-0111 [LOW] CVE-2012-0111: virtualbox - Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtua... Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization 4.1 allows local users to affect confidentiality and integrity via unknown vectors related to Shared Folders. Scope: local sid: resolved (fixed in 4.1.8-dfsg-1)

CVE-2012-3221 [LOW] CVE-2012-3221: virtualbox - Unspecified vulnerability in the Oracle VM Virtual Box component in Oracle Virtu... Unspecified vulnerability in the Oracle VM Virtual Box component in Oracle Virtualization 3.2, 4.0, and 4.1 allows local users to affect availability via unknown vectors related to VirtualBox Core. NOTE: The previous information was obtained from the October 2012 CPU. Oracle has not commented on claims from another vendor that this issue is related to "incorrect int

CVE-2011-2305 [MEDIUM] CVE-2011-2305: virtualbox - Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows local users to affe... Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows local users to affect confidentiality, integrity, and availability via unknown vectors. Scope: local sid: resolved (fixed in 4.0.10-dfsg-1)