tag 504149 pending
thanks
> I hope our fix is sufficient. The changesets r13788, r13807, r13809,
> r13810 should check the permissions. These changesets should apply
> to 1.6.6 and 2.0 as well.
Thanks a lot Frank.
I just put a unified patch into our SVN, a new upload will come pretty soon.
Mic
Paul et all,
On Saturday 01 November 2008, Paul Wise wrote:
> By creating a symlink /tmp/.vbox-$USER-ipc/lock an attacker can
> overwrite any file owned by any user who starts virtualbox. Starting and
> then exiting virtualbox is enough to trigger this, you don't need to
> start any virtual machin
2 matches
Mail list logo
