By Ritwik Ghoshal-Oracle on May 07, 2013
|CVE Description||CVSSv2 Base Score||Component||Product and Resolution|
|CVE-2013-0169 SSL/TLS: CBC padding timing attack aka the "Lucky Thirteen" vulnerability||2.6||VirtualBox Extension pack||
This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.