Overview

File _patchinfo of Package patchinfo.18144

<patchinfo incident="18144">
  <issue tracker="cve" id="2023-22100"/>
  <issue tracker="cve" id="2023-22099"/>
  <issue tracker="cve" id="2023-22098"/>
  <issue tracker="bnc" id="1216363">VUL-0: CVE-2023-22098: virtualbox: virtualbox 7.0.12 security update (Oracle October 2023 CPU)</issue>
  <issue tracker="bnc" id="1215463">VirtualBox shared folders no longer working in Tumbleweed 20230915</issue>
  <issue tracker="bnc" id="1216364">VUL-0: CVE-2023-22099:  virtualbox: virtualbox 7.0.12 security update (Oracle October 2023 CPU)</issue>
  <issue tracker="bnc" id="1216365">VUL-0: CVE-2023-22100:  virtualbox: virtualbox 7.0.12 security update (Oracle October 2023 CPU)</issue>
  <packager>lwfinger</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for virtualbox</summary>
  <description>This update for virtualbox fixes the following issues:

- Version bump to VirtualBox 7.0.12 (released October 17 2023 by Oracle)

  Fixes the following:
  - CVE-2023-22098 (boo#1216363)
  - CVE-2023-22099 (boo#1216364)
  - CVE-2023-22100 (boo#1216365)

This is a maintenance release. The following items were fixed and/or added:

- VMM: Fixed using a debugger inside the guest under certain circumstances (bugs #21413 and #21546)
- VMM: Fixed detection of VT-x being used by other hypervisors (bug #21867)
- VMM: Introduced additional improvements in Split Lock Detection feature of recent Intel CPUs on Linux hosts (bug #20180)
- GUI: Fixed issue when the nested hardware virtualization setting was not displayed in the VM details panel (bug #21707)
- GUI: Introduced NLS update for Croatian, Indonesian, Italian, Japanese, Korean, Dutch and Turkish languages as well as added general look-and-feel improvements
- Devices: Fixed black screen in Windows guests with multiple guest screens when 3D is disabled (7.0.10 regression)
- Devices: Fixed PCI device identifiers for the VirtIO network interface (bug #21516)
- Devices: Fixed VLAN support for the VirtIO network interface (bug #21778)
- Devices: Fixed loading saved states when a TPM is configured (7.0.10 regression, bug #21773)
- Networking: Fixed memory leaks in the VBoxIntNetSwitch process on macOS (bug #21752)
- Networking: Fixed TCP connections with IP addresses ending on .2 when the NAT network attachment is used (bug #21513)
- VRDP: Added general improvements
- VBoxManage: Added improvements for "list usbfilters" command
- Unattended: Added kick start file support for Oracle Linux 8 and Oracle Linux 9.
- Main: Added more Linux OS subtypes
- Host Services: Fixed Guest Properties service crash under rare circumstance
- Linux Host and Guest: Fixed few "field-spanning write" kernel warnings (bugs #21410 and #21862)
- Linux Guest Additions: Added more fixes for RHEL 8.9 and 9.3 kernel
- Linux Guest Additions: Added more fixes for kernel 6.4
- Linux Guest Additions: Added initial support for OpenSUSE 15.5 kernel
- Linux Guest Additions: Added initial support for kernels 6.5 and 6.6
- Linux Guest Additions: Added version reporting for "rcvboxadd status-kernel" and "rcvboxadd status-user" commands
- BIOS: Restored support for ISA SCSI HBAs in the BIOS (bug #21736)

- Convert to systemd-sysusers

- Fix problems with 6.5 kernels and shared folders. (boo#1215463).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places