The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

CVE-2013-0169 Lucky Thirteen vulnerability in VirtualBox Extension pack

Ritwik Ghoshal
Principal Security Analyst
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2013-0169 SSL/TLS: CBC padding timing attack aka the "Lucky Thirteen" vulnerability 2.6 VirtualBox Extension pack
Oracle VM VirtualBox 4.1 Oracle VM VirtualBox Extension Pack 4.1.26
Oracle VM VirtualBox 4.2 Oracle VM VirtualBox Extension Pack 4.2.12

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.