VDB

GCVE-110-MAGEIA-2015-228

GCVE-110-MAGEIA-2015-228
Advisory Published
Vulnetix · Advisory published May 15, 2015
Updated virtualbox packages fixes security vulnerability This update provides the 4.3.28 maintenance release fixing the following security issue: The Floppy Disk Controller (FDC) in QEMU, XEN, KVM and virtualbox allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the FD_CMD_READ_ID, FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM (CVE-2015-3456). For other fixes in the maintenance release, read the referenced changelog.

Affected Products

VendorProductVersionsPlatforms
Mageiakmod-vboxadditions0 (affected), 4.3.28-1.mga4 (unaffected)
Mageiakmod-virtualbox0 (affected), 4.3.28-1.mga4 (unaffected)
Mageiavirtualbox0 (affected), 4.3.28-1.mga4 (unaffected)

Browse GCVE Records

72,096 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›