Mike, I uploaded them on my ppa [1] and unapproved queue. I think 5* series is out of scope here, but 4.3.40 is a minor jump I can do.
We can consider a 5* jump but this requires probably a kbuild backport and a lot of more testing, since the diff will be considerably huge. [1] https://launchpad.net/~costamagnagianfranco/+archive/ubuntu /virtualbox-ppa we can SRU this one now, and wait for the new one in the future? ** Also affects: virtualbox-guest-additions-iso (Ubuntu) Importance: Undecided Status: New ** Changed in: virtualbox-guest-additions-iso (Ubuntu) Status: New => In Progress ** Changed in: virtualbox (Ubuntu) Status: New => In Progress ** Changed in: virtualbox (Ubuntu) Assignee: (unassigned) => Gianfranco Costamagna (costamagnagianfranco) ** Changed in: virtualbox-guest-additions-iso (Ubuntu) Assignee: (unassigned) => Gianfranco Costamagna (costamagnagianfranco) ** Summary changed: - Virtualbox in trusty 14.04 is an old version and has many security vulnerabilities + [SRU] Virtualbox in trusty 14.04 is an old version and has many security vulnerabilities ** Description changed: - The Virtualbox version in trusty 14.04 is 4.3.36. It is affected by up - to 110 vulnerabilities. 23 can be resolved if virtualbox can be upgraded - to 5.0.40. An additional 37 can be resolved if virtualbox can be - upgraded to 5.1.38. + [Impact] + The Virtualbox version in trusty 14.04 is 4.3.36. It is affected by up to 110 vulnerabilities. 23 can be resolved if virtualbox can be upgraded to 5.0.40. An additional 37 can be resolved if virtualbox can be upgraded to 5.1.38. + + [Test Case] + * Install Vbox, and play with it + + [Regression Potential] + * low, never had regressions in stable updates. + * upstream is really careful in his testing before release -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1812671 Title: [SRU] Virtualbox in trusty 14.04 is an old version and has many security vulnerabilities To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/virtualbox/+bug/1812671/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
