[Bug 271141] security/vuxml: document vulnerabilities for the emulators/virtualbox-ose family
Date: Sat, 03 Jun 2023 13:21:37 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=271141
Graham Perrin <grahamperrin@freebsd.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|security/vuxml: mark as |security/vuxml: document
|FORBIDDEN, and document |vulnerabilities for the
|vulnerabilities for, the |emulators/virtualbox-ose
|emulators/virtualbox-ose |family
|family |
--- Comment #5 from Graham Perrin <grahamperrin@freebsd.org> ---
With the Oracle-supported 6.1 branch
<https://www.virtualbox.org/wiki/Changelog-6.1> currently at 6.1.44
As far as I can tell, from a FreeBSD-CURRENT perspective,
<https://cgit.freebsd.org/ports/commit/?id=1d37fcd8316a078e512852b7c565b5b2cf2dcbcd>
(2023-05-15), its cherry-pick to 2023Q2, and other 6.1-related commits negated
the need to mark as FORBIDDEN.
% uname -r
14.0-CURRENT
% pkg search virtualbox | grep -v 6.1.44
phpvirtualbox-6.1_1 AJAX Web Interface for VirtualBox
phpvirtualbox-legacy-5.2.1_2 AJAX Web Interface for VirtualBox
virtualbox-ose-additions-legacy-5.2.44_5 VirtualBox additions for FreeBSD
guests
virtualbox-ose-additions-nox11-legacy-5.2.44_4 VirtualBox additions for FreeBSD
guests
virtualbox-ose-kmod-legacy-5.2.44_7 VirtualBox kernel module for FreeBSD
%
In addition: we might reasonably assume that ports of the 5.2 branch are
vulnerable, however these are no longer supported by Oracle (and so, we can't
expect vulnerabilities to be documented by Oracle).
--
You are receiving this mail because:
You are the assignee for the bug.