VDB
GCVE-110-MAGEIA-2017-78
GCVE-110-MAGEIA-2017-78
Advisory Published
This update provides virtualbox 5.1.18 maintenance release and resolves
at least the following security issues:
A vulnerability in the GUI subcomponent of virtualbox allows unauthenticated
attacker unauthorized update, insert or delete access to some data as well
as unauthorized read access to a subset of VirtualBox accessible data and
unauthorized ability to cause a partial denial of service (bsc#1020856)
(CVE-2016-5545).
A vulnerability in the Shared Folder subcomponent of virtualbox allows high
privileged attacker unauthorized creation, deletion or modification access
to critical data and unauthorized ability to cause a hang or frequently
repeatable crash (bsc#1020856) (CVE-2017-3290).
A vulnerability in the GUI subcomponent of virtualbox allows high privileged
attacker with network access via multiple protocols to compromise virtualbox
(bsc#1020856) (CVE-2017-3316).
A vulnerability in the SVGA Emulation subcomponent of virtualbox allows low
privileged attacker unauthorized creation, deletion or modification access
to critical data and unauthorized ability to cause a hang or frequently
repeatable crash (bsc#1020856) (CVE-2017-3332).
A vulnerability in the Shared Folder subcomponent of virtualbox allows high
privileged attacker unauthorized creation, deletion or modification access
to critical data and unauthorized access to critical data to all virtualbox
accessible data (CVE-2017-3538).
For other fixes in this update, see the referenced changelog.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | kmod-virtualbox | 0 (affected), 5.1.18-1.mga5 (unaffected), 0 (affected), 5.1.18-1.mga5 (unaffected) | — |
| Mageia | kmod-vboxadditions | 0 (affected), 5.1.18-1.mga5 (unaffected), 0 (affected), 5.1.18-1.mga5 (unaffected) | — |
| Mageia | virtualbox | 0 (affected), 5.1.18-1.mga5 (unaffected), 0 (affected), 5.1.18-1.mga5 (unaffected) | — |
| Mageia | youtube-dl | 2017.09.02-1.mga5 (unaffected), 0 (affected) | — |
| Mageia | youtube-dl | 2017.09.02-1.mga6 (unaffected), 0 (affected) | — |
References
Browse GCVE Records
72,921 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.