2019-01-31 20:33:38 +01:00
|
|
|
# This patch file is to warn future maintainers of VirtualBox on openSUSE
|
|
|
|
|
# platforms that the distributed versions of vboxadd.sh and vboxdrv.sh
|
|
|
|
|
# contain security holes. If you need to use these scripts in the future,
|
|
|
|
|
# please consult the Security Group at openSUSE.
|
|
|
|
|
#
|
|
|
|
|
# January 31, 2019 - Larry Finger
|
|
|
|
|
#
|
Accepting request 1084796 from home:larryr:branches:Virtualization
- VirtualBox 7.0.8 (released April 18 2023)
This is a maintenance release. The following items were fixed and/or added:
VMM: Introduced general improvements in nested visualization area
GUI: Brought back Restore current snapshot checkbox of Close VM dialog (bugs #21189, #21491)
GUI: Fixes and validation for VM settings USB filters editor, filter port value is now properly saved/restored
GUI: Fixes for VM name and OS type embedded editors of Details pane
GUI: Cloud related wizards should now propose enabled profiles before disabled
Oracle VM VirtualBox Extension Pack: Fixed shipping the cryptographic support module for full VM encryption
E1000: Fixed possible guru meditation when changing network attachments (bug #21488)
virtio-net: Follow up fixes for FreeBSD 12.3 and pfSense 2.6.0 (bug #21201)
3D: Fixed various graphics issues with Windows 7 guests (bugs #21129, #21196, #21208, #21521)
Main/UefiVariableStore: Added API to add signatures to the MOK list (Machine Owner Key)
VBoxManage: Introduced modifynvram enrollmok sub-command to enroll Machine Owner Key into NVRAM, so Linux guest kernel can pick it up in order to verify signature of modules signed with this key
Guest Control/Main: Fixed deleting files via built-in toolbox
Linux host: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/vbox/vbox.cfg, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions and host Installer: Improved detection if system is running systemd as the init process
Linux Guest Additions and host drivers: Introduce initial support for kernel 6.3
Linux Guest Additions: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/virtualbox-guest-additions.conf, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions: Added experimental support for kernel modules and user services reloading in the end of installation process, thus guest system reboot after Guest Additions (7.0.8 and newer) upgrade is no longer required in general case
Linux Guest Additions: Fixed vboxvideo build issue with RHEL 8.7, 9.1 and 9.2 kernels (bugs #21446 and #21450)
Fixes for (boo#1210616)
CVE-2023-21990 Oracle VM VirtualBox Core None No 8.2 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21987 Oracle VM VirtualBox Core None No 7.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22002 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21989 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21998 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22000 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22001 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21988 Oracle VM VirtualBox Core None No 3.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21999 Oracle VM VirtualBox Core None No 3.6 Prior to 6.1.44, Prior to 7.0.8
OBS-URL: https://build.opensuse.org/request/show/1084796
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=687
2023-05-04 18:43:16 +02:00
|
|
|
Index: VirtualBox-7.0.8/src/VBox/Additions/linux/installer/vboxadd.sh
|
2019-01-31 20:33:38 +01:00
|
|
|
===================================================================
|
Accepting request 1084796 from home:larryr:branches:Virtualization
- VirtualBox 7.0.8 (released April 18 2023)
This is a maintenance release. The following items were fixed and/or added:
VMM: Introduced general improvements in nested visualization area
GUI: Brought back Restore current snapshot checkbox of Close VM dialog (bugs #21189, #21491)
GUI: Fixes and validation for VM settings USB filters editor, filter port value is now properly saved/restored
GUI: Fixes for VM name and OS type embedded editors of Details pane
GUI: Cloud related wizards should now propose enabled profiles before disabled
Oracle VM VirtualBox Extension Pack: Fixed shipping the cryptographic support module for full VM encryption
E1000: Fixed possible guru meditation when changing network attachments (bug #21488)
virtio-net: Follow up fixes for FreeBSD 12.3 and pfSense 2.6.0 (bug #21201)
3D: Fixed various graphics issues with Windows 7 guests (bugs #21129, #21196, #21208, #21521)
Main/UefiVariableStore: Added API to add signatures to the MOK list (Machine Owner Key)
VBoxManage: Introduced modifynvram enrollmok sub-command to enroll Machine Owner Key into NVRAM, so Linux guest kernel can pick it up in order to verify signature of modules signed with this key
Guest Control/Main: Fixed deleting files via built-in toolbox
Linux host: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/vbox/vbox.cfg, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions and host Installer: Improved detection if system is running systemd as the init process
Linux Guest Additions and host drivers: Introduce initial support for kernel 6.3
Linux Guest Additions: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/virtualbox-guest-additions.conf, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions: Added experimental support for kernel modules and user services reloading in the end of installation process, thus guest system reboot after Guest Additions (7.0.8 and newer) upgrade is no longer required in general case
Linux Guest Additions: Fixed vboxvideo build issue with RHEL 8.7, 9.1 and 9.2 kernels (bugs #21446 and #21450)
Fixes for (boo#1210616)
CVE-2023-21990 Oracle VM VirtualBox Core None No 8.2 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21987 Oracle VM VirtualBox Core None No 7.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22002 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21989 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21998 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22000 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22001 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21988 Oracle VM VirtualBox Core None No 3.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21999 Oracle VM VirtualBox Core None No 3.6 Prior to 6.1.44, Prior to 7.0.8
OBS-URL: https://build.opensuse.org/request/show/1084796
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=687
2023-05-04 18:43:16 +02:00
|
|
|
--- VirtualBox-7.0.8.orig/src/VBox/Additions/linux/installer/vboxadd.sh
|
|
|
|
|
+++ VirtualBox-7.0.8/src/VBox/Additions/linux/installer/vboxadd.sh
|
|
|
|
|
@@ -1109,9 +1109,11 @@ dmnstatus()
|
2019-01-31 20:33:38 +01:00
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
|
Accepting request 696073 from home:lwfinger:branches:openSUSE:Factory
- Updated file "Fixes_for_Leap15.1.patch" to handle one addition problem due to backporting of kernel APIa.
Remove "BuildRequires: quilt" - that package is not needed.
VirtualBox 6.0.6 fixes the following: CVE-2019-2656, CVE-2019-2680, CVE-2019-2696, CVE-2019-2703, CVE-2019-2721,
CVE-2019-2722, CVE-2019-2723, CVE-2019-2657, CVE-2019-2690, CVE-2019-2679,
CVE-2019-2678, and CVE-2019-2574 boo#1132827.
- Version bump to 6.0.6 (released April 17 2019 by Oracle)
The following files in the openSUSE implemetation are removed: "fix_32_bit_builds.patch", "fixes_for_5.0.patch", and
"fixes_for_5.1.patch". These issues are fixed upstream.
OBS-URL: https://build.opensuse.org/request/show/696073
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=486
2019-04-30 02:56:27 +02:00
|
|
|
-for i; do
|
|
|
|
|
- case "$i" in quiet) QUIET=yes;; esac
|
|
|
|
|
-done
|
2019-01-31 20:33:38 +01:00
|
|
|
+echo "This script has insecurities. It must never be used in openSUSE without consultine Security."
|
|
|
|
|
+exit 1
|
|
|
|
|
+
|
Accepting request 696073 from home:lwfinger:branches:openSUSE:Factory
- Updated file "Fixes_for_Leap15.1.patch" to handle one addition problem due to backporting of kernel APIa.
Remove "BuildRequires: quilt" - that package is not needed.
VirtualBox 6.0.6 fixes the following: CVE-2019-2656, CVE-2019-2680, CVE-2019-2696, CVE-2019-2703, CVE-2019-2721,
CVE-2019-2722, CVE-2019-2723, CVE-2019-2657, CVE-2019-2690, CVE-2019-2679,
CVE-2019-2678, and CVE-2019-2574 boo#1132827.
- Version bump to 6.0.6 (released April 17 2019 by Oracle)
The following files in the openSUSE implemetation are removed: "fix_32_bit_builds.patch", "fixes_for_5.0.patch", and
"fixes_for_5.1.patch". These issues are fixed upstream.
OBS-URL: https://build.opensuse.org/request/show/696073
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=486
2019-04-30 02:56:27 +02:00
|
|
|
+case "$2" in quiet)
|
|
|
|
|
+ QUIET=yes;;
|
|
|
|
|
case "$1" in
|
|
|
|
|
# Does setup without clean-up first and marks all kernels currently found on the
|
|
|
|
|
# system so that we can see later if any were added.
|
Accepting request 1084796 from home:larryr:branches:Virtualization
- VirtualBox 7.0.8 (released April 18 2023)
This is a maintenance release. The following items were fixed and/or added:
VMM: Introduced general improvements in nested visualization area
GUI: Brought back Restore current snapshot checkbox of Close VM dialog (bugs #21189, #21491)
GUI: Fixes and validation for VM settings USB filters editor, filter port value is now properly saved/restored
GUI: Fixes for VM name and OS type embedded editors of Details pane
GUI: Cloud related wizards should now propose enabled profiles before disabled
Oracle VM VirtualBox Extension Pack: Fixed shipping the cryptographic support module for full VM encryption
E1000: Fixed possible guru meditation when changing network attachments (bug #21488)
virtio-net: Follow up fixes for FreeBSD 12.3 and pfSense 2.6.0 (bug #21201)
3D: Fixed various graphics issues with Windows 7 guests (bugs #21129, #21196, #21208, #21521)
Main/UefiVariableStore: Added API to add signatures to the MOK list (Machine Owner Key)
VBoxManage: Introduced modifynvram enrollmok sub-command to enroll Machine Owner Key into NVRAM, so Linux guest kernel can pick it up in order to verify signature of modules signed with this key
Guest Control/Main: Fixed deleting files via built-in toolbox
Linux host: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/vbox/vbox.cfg, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions and host Installer: Improved detection if system is running systemd as the init process
Linux Guest Additions and host drivers: Introduce initial support for kernel 6.3
Linux Guest Additions: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/virtualbox-guest-additions.conf, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions: Added experimental support for kernel modules and user services reloading in the end of installation process, thus guest system reboot after Guest Additions (7.0.8 and newer) upgrade is no longer required in general case
Linux Guest Additions: Fixed vboxvideo build issue with RHEL 8.7, 9.1 and 9.2 kernels (bugs #21446 and #21450)
Fixes for (boo#1210616)
CVE-2023-21990 Oracle VM VirtualBox Core None No 8.2 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21987 Oracle VM VirtualBox Core None No 7.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22002 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21989 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21998 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22000 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22001 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21988 Oracle VM VirtualBox Core None No 3.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21999 Oracle VM VirtualBox Core None No 3.6 Prior to 6.1.44, Prior to 7.0.8
OBS-URL: https://build.opensuse.org/request/show/1084796
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=687
2023-05-04 18:43:16 +02:00
|
|
|
Index: VirtualBox-7.0.8/src/VBox/Installer/linux/vboxdrv.sh
|
2019-01-31 20:33:38 +01:00
|
|
|
===================================================================
|
Accepting request 1084796 from home:larryr:branches:Virtualization
- VirtualBox 7.0.8 (released April 18 2023)
This is a maintenance release. The following items were fixed and/or added:
VMM: Introduced general improvements in nested visualization area
GUI: Brought back Restore current snapshot checkbox of Close VM dialog (bugs #21189, #21491)
GUI: Fixes and validation for VM settings USB filters editor, filter port value is now properly saved/restored
GUI: Fixes for VM name and OS type embedded editors of Details pane
GUI: Cloud related wizards should now propose enabled profiles before disabled
Oracle VM VirtualBox Extension Pack: Fixed shipping the cryptographic support module for full VM encryption
E1000: Fixed possible guru meditation when changing network attachments (bug #21488)
virtio-net: Follow up fixes for FreeBSD 12.3 and pfSense 2.6.0 (bug #21201)
3D: Fixed various graphics issues with Windows 7 guests (bugs #21129, #21196, #21208, #21521)
Main/UefiVariableStore: Added API to add signatures to the MOK list (Machine Owner Key)
VBoxManage: Introduced modifynvram enrollmok sub-command to enroll Machine Owner Key into NVRAM, so Linux guest kernel can pick it up in order to verify signature of modules signed with this key
Guest Control/Main: Fixed deleting files via built-in toolbox
Linux host: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/vbox/vbox.cfg, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions and host Installer: Improved detection if system is running systemd as the init process
Linux Guest Additions and host drivers: Introduce initial support for kernel 6.3
Linux Guest Additions: Added possibility to bypass kernel modules signature verification once VBOX_BYPASS_MODULES_SIGNATURE_CHECK="1" is specified in /etc/virtualbox-guest-additions.conf, useful in case if Linux distribution does not provide necessary tools to verify kernel module signature
Linux Guest Additions: Added experimental support for kernel modules and user services reloading in the end of installation process, thus guest system reboot after Guest Additions (7.0.8 and newer) upgrade is no longer required in general case
Linux Guest Additions: Fixed vboxvideo build issue with RHEL 8.7, 9.1 and 9.2 kernels (bugs #21446 and #21450)
Fixes for (boo#1210616)
CVE-2023-21990 Oracle VM VirtualBox Core None No 8.2 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21987 Oracle VM VirtualBox Core None No 7.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22002 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21989 Oracle VM VirtualBox Core None No 6.0 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21998 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22000 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-22001 Oracle VM VirtualBox Core None No 4.6 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21988 Oracle VM VirtualBox Core None No 3.8 Prior to 6.1.44, Prior to 7.0.8
CVE-2023-21999 Oracle VM VirtualBox Core None No 3.6 Prior to 6.1.44, Prior to 7.0.8
OBS-URL: https://build.opensuse.org/request/show/1084796
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=687
2023-05-04 18:43:16 +02:00
|
|
|
--- VirtualBox-7.0.8.orig/src/VBox/Installer/linux/vboxdrv.sh
|
|
|
|
|
+++ VirtualBox-7.0.8/src/VBox/Installer/linux/vboxdrv.sh
|
|
|
|
|
@@ -48,6 +48,9 @@ DEVICE=/dev/vboxdrv
|
2019-01-31 20:33:38 +01:00
|
|
|
MODPROBE=/sbin/modprobe
|
|
|
|
|
SCRIPTNAME=vboxdrv.sh
|
|
|
|
|
|
|
|
|
|
+echo "This script has insecurities. It must never be used in openSUSE without consultine Security."
|
|
|
|
|
+exit 1
|
|
|
|
|
+
|
|
|
|
|
# The below is GNU-specific. See VBox.sh for the longer Solaris/OS X version.
|
|
|
|
|
TARGET=`readlink -e -- "${0}"` || exit 1
|
|
|
|
|
SCRIPT_DIR="${TARGET%/[!/]*}"
|