874091 – (CVE-2014-2441) VUL-0: CVE-2014-2441: VirtualBox: attack vector via Graphics driver (WDDM) for Windows guests

Bug 874091 (CVE-2014-2441) - VUL-0: CVE-2014-2441: VirtualBox: attack vector via Graphics driver (WDDM) for Windows guests

Summary: VUL-0: CVE-2014-2441: VirtualBox: attack vector via Graphics driver (WDDM) fo...

Status:	RESOLVED FIXED

Alias:	CVE-2014-2441

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other openSUSE 13.1

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Michal Seben
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/97986/
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2014-04-17 06:45 UTC by Alexander Bergmann
Modified:	2015-04-01 13:33 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Bergmann 2014-04-17 06:45:01 UTC

Vulnerability Summary for CVE-2014-2441

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.1.32, 4.2.24, and 4.3.10 allows local users to affect confidentiality, integrity, and availability via vectors related to Graphics driver (WDDM) for Windows guests.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2441
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2441

Comment 1 Swamp Workflow Management 2014-04-23 22:00:12 UTC

bugbot adjusting priority

Comment 2 Johannes Segitz 2015-04-01 13:33:49 UTC

fixed in openSUSE