[Pkg-virtualbox-commits] [virtualbox] 01/01: Fix Various CVEs, from Frank Mehnert

[Gianfranco Costamagna]

This is an automated email from the git hooks/post-receive script.

locutusofborg-guest pushed a commit to branch jessie
in repository virtualbox.

commit 6165109feac56998b99853c700f0e022138717be
Author: Gianfranco Costamagna <costamagnagianfranco at yahoo.it>
Date:   Thu Jan 22 11:25:35 2015 +0100

    Fix Various CVEs, from Frank Mehnert
---
 debian/changelog | 10 ++++++++++
 debian/rules     |  7 ++++++-
 2 files changed, 16 insertions(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index 6dc1888..81ced20 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+virtualbox (4.3.18-dfsg-2) unstable; urgency=high
+
+  [ Frank Mehnert ]
+  * d/rules: Disable experimental code by exporting
+    VBOX_WITH_VMSVGA= VBOX_WITH_VMSVGA3D=
+    this fixes CVE-2014-6595, CVE-2014-6590, CVE-2014-6589,
+    CVE-2014-6588 and CVE-2015-0427.
+
+ -- Gianfranco Costamagna <costamagnagianfranco at yahoo.it>  Thu, 22 Jan 2015 10:51:40 +0100
+
 virtualbox (4.3.18-dfsg-1) unstable; urgency=medium
 
   [ Gianfranco Costamagna ]
diff --git a/debian/rules b/debian/rules
index 1f5df85..322c7e0 100755
--- a/debian/rules
+++ b/debian/rules
@@ -64,7 +64,12 @@ override_dh_auto_build:
 	    VBOX_BUILD_PUBLISHER=_$(DIST_NAME) \
 	    VBOX_WITH_REGISTRATION_REQUEST= \
 	    VBOX_WITH_UPDATE_REQUEST= \
-	    KBUILD_VERBOSE=2
+	    KBUILD_VERBOSE=2 \
+	    VBOX_WITH_VMSVGA= \
+	    VBOX_WITH_VMSVGA3D=
+
+# VBOX_WITH_VMSVGA and VBOX_WITH_VMSVGA3D are only for versions prior to 4.3.20 to fix CVE-2014-6595, CVE-2014-6590, CVE-2014-6589, CVE-2014-6588 and CVE-2015-0427
+
 
 	xsltproc --nonet --stringparam section.autolabel 1 \
 	    -o debian/README.Debian.html \

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-virtualbox/virtualbox.git