File _patchinfo of Package patchinfo.16147

<patchinfo incident="16147">
  <issue tracker="bnc" id="1183329">virtualbox 6.1.18 crashes when it runs nested VM</issue>
  <issue tracker="bnc" id="1184542"></issue>
  <issue tracker="bnc" id="1183125">Leap 15.3 installation in Virtualbox without VBox integration</issue>
  <issue tracker="bnc" id="1181197"></issue>
  <issue tracker="bnc" id="1181198"></issue>
  <issue tracker="cve" id="2021-2264"/>
  <issue tracker="cve" id="2021-2074"/>
  <issue tracker="cve" id="2021-2129"/>
  <packager>lwfinger</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for virtualbox</summary>
  <description>This update for virtualbox fixes the following issues:

- Version bump to 6.1.20 (released April 20 2021 by Oracle)
  Fixes boo#1183329 "virtualbox 6.1.18 crashes when it runs nested VM"
  Fixes boo#1183125 "Leap 15.3 installation in Virtualbox without VBox integration"
  Fixes CVE-2021-2264 and boo#1184542. The directory for the &lt;user&gt;.start files for
  autostarting VMs is moved from /etc/vbox to /etc/vbox/autostart.d. In addition, the autostart
  service is hardened (by Oracle).
-  change the modalias for guest-tools and guest-x11 to get them to autoinstall.
- Own %{_sysconfdir}/X11/xinit/xinitrc.d as default packages (eg 
  systemd) no longer do so, breaking package build.
- Update fixes_for_leap15.3 for kernel API changes between 5.3.18-45 and 5.3.18-47.
- update-extpack.sh: explicitly use https:// protocol for authenticity. The
  http:// URL is currently redirected to https:// but don't rely on this.
- Add code to generate guest modules for Leap 15.2 and Leap 15.3. The kernel versions
  do not allow window resizing. Files "virtualbox-kmp-files-leap" and
  "vboxguestconfig.sh" are added
- Fixes CVE-2021-2074, boo#1181197 and CVE-2021-2129, boo#1181198.
- Under some circumstances, shared folders are mounted as root. 
</description>
</patchinfo>