Tuesday May 07, 2013

CVE-2013-0169 Lucky Thirteen vulnerability in VirtualBox Extension pack

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2013-0169 SSL/TLS: CBC padding timing attack aka the "Lucky Thirteen" vulnerability 2.6 VirtualBox Extension pack
Oracle VM VirtualBox 4.1 Oracle VM VirtualBox Extension Pack 4.1.26
Oracle VM VirtualBox 4.2 Oracle VM VirtualBox Extension Pack 4.2.12

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

About

This blog provides security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle Products.
Summarized version of this blog is available as a mapping of CVEs and solutions.

Search

Archives
« May 2013 »
SunMonTueWedThuFriSat
   
1
2
3
4
5
6
8
9
10
11
12
13
14
15
16
17
18
19
20
22
23
24
25
26
27
28
29
30
31
 
       
Today