- Updated file "Fixes_for_Leap15.1.patch" to handle one addition problem due to backporting of kernel APIa.
Remove "BuildRequires: quilt" - that package is not needed.
VirtualBox 6.0.6 fixes the following: CVE-2019-2656, CVE-2019-2680, CVE-2019-2696, CVE-2019-2703, CVE-2019-2721,
CVE-2019-2722, CVE-2019-2723, CVE-2019-2657, CVE-2019-2690, CVE-2019-2679,
CVE-2019-2678, and CVE-2019-2574 boo#1132827.
- Version bump to 6.0.6 (released April 17 2019 by Oracle)
The following files in the openSUSE implemetation are removed: "fix_32_bit_builds.patch", "fixes_for_5.0.patch", and
"fixes_for_5.1.patch". These issues are fixed upstream.
OBS-URL: https://build.opensuse.org/request/show/696073
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=486
Hi Larry,
here's is my current state of VB affairs. It's more a RFC, but it
contains everything to build that biest for the most prominent
distributions.
The new patch virtualbox-fix-ui-background-color.patch is an attempt
to deuglify the UI with certain color schemes.
Again, RFC stuff for you to look at.
Thanks,
Pete
- adjust patch virtualbox-fix-ui-background-color.patch to really
fix the background color messing...
- add patch to stop UI messing with Highlight Color for background
- apply fixes_for_qt5.13.patch for Qt versions >= 5.13.0 only
- Add setBadness('permissions-unauthorized-file',333) to rpmlintrc
- Remove suid attributes from all files
- add libgsoap version dependency >= 2.8.50 (recv_maxlength)
- Fix virtualbox wrapper script virtualbox-wrapper.sh to check
60-vboxdrv.rules in /usr/lib/udev/rules.d, not /etc/udev/rules.d
Logic is still flawed, until it doesn't take both locations into
account
- Add custom /etc/permission.d/virtualbox{,.paranoid} definitions
- Add compatibility symlink to keep old desktop links functional
OBS-URL: https://build.opensuse.org/request/show/690451
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=479
Files "fixes_for_5.0" and "fixes_for_gcc9" are deleted - the code was fixed upstream.
This is a maintenance release. The following items were fixed and/or added:
Virtualization core: support Shanghai/Zhaoxin CPUs.
User interface: handle command line arguments to VirtualBox correctly (bugs #18206 and #18197)
User interface: improvements to machine manager window, virtual optical disk creator, storage selector window and log viewer window
User interface: various small fixes and improvements
Audio: implemented time scheduling for the AC'97 device emulation to keep audio and video in sync
Graphics: basic support for VMSVGA graphics device in virtual machines using EFI
Network: fix occasional NATNet crashes (bug #13899)
Network: worked around problems in certain PCnet drivers on old operating systems
Serial: fixed connecting to pseudo terminals on POSIX hosts (6.0.0 regression; bug #18319)
Linux hosts and guests: fix for building kernel modules against Linux 5.0. Thank you Kyle Laker
- Converted vboxwebsrv to a systemd service. Previously, this was started through init.d. bsc#1116050
Files "vboxweb-service.service" and "vboxweb-service.sh" are added.
File "vbox-vboxweb-init-script.diff" is removed.
File "fixes_for_4.20.patch" is removed - the code was fixed upstream.
File "fix_lib_search.patch" is added to fix the build of VBox0GL.
File "fixes_for_5.0.patch" is added to compensate for API changes in kernel 5.0.
File "virtualbox-system-x.patch" is removed.
File "fixes_for_Leap15.1.patch" is added to fix build errors on Leap 15<F5>.1.
- Version bump to 6.0.2 (released January 15 2019 by Oracle)
This is a maintenance release. The following items were fixed and/or added:
User interface: fixed creation of desktop shortcuts for starting virtual machines (bug #18207)
User interface: allow the first run window to selecting host drives (bug #18230)
User interface: fixed attaching empty host optical drives (bug #18223)
User interface: implemented a new virtual optical disk creation window
USB: modified Linux backends to reset USB devices (previously, most guest attempts to reset USB devices were ignored)
PCnet: fixed a regression which caused some PCnet PCI guest drivers to not detect the emulated hardware (bug #18286)
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=465
USB passthru opens a security hole, yet it is so valuable that many users want the feature, thus it is our default.
Previously, a user needed to edit a udev rule to disable passthru. The bad part was that an update of VB changed the
rule back to allow passthru without any notification. These changes modify the popup to allow the user to accept or decline
passthru. If the user declines, then the root password is requested and the udev rule is modified. As these modifications will be
lost with the next VB update, the inode of the udev rule is kept. If the user has previously declined and the inode has changed,
the popup will show the next time VB is started. File "fix_usb_rules.sh" is added.
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=336
the logic has been inverted. Now, the required udev commands to allow passthru are included. The first time that VB is started,
the user will get a screen that points to the bug entry discussing the problem and states what they should do to block the
insecure usage. In any case, that screen will only be printed once. File "virtualbox-60-vboxdrv.rules" has been added
These changes address the issues in bnc #1018340.
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=303