#20838 new defect

Discovered 2 vulnerabilities in VirtualBox

Reported by:	nick1	Owned by:
Component:	network	Version:	VirtualBox 6.1.32
Keywords:	E1000 vulnerabilites	Cc:
Guest type:	other	Host type:	other

Description

Hi, In the last couple of months I discovered 2 vulnerabilities in E1000 emulated device. I disclose it to you in order to fix them. I provide a zip file which contains a README.md file, which is highly documented description of the vulnerabilities. It also describes other files in the zip file. I will be happy to be in touch with you to help you resolve this issues. In addition, I would be happy if you can create a CVE number for each one of these vulnerabilities.

Thank you and hope to hear from you soon, Adi

e1000_vulnerabilites.zip: md5

Attachments (1)

e1000_vulnerabilites.zip (92.8 KB ) - added by nick1 3 years ago.: MD5: 5044B6E9B2573A1BDD30334694C639AF

Download all attachments as: .zip

Change History (2)

by nick1, 3 years ago

Attachment:	e1000_vulnerabilites.zip added

MD5: 5044B6E9B2573A1BDD30334694C639AF

comment:1 by Klaus Espenlaub, 3 years ago

We'll look into it... usual Oracle security vulnerability reporting process would apply: https://www.oracle.com/corporate/security-practices/assurance/vulnerability/reporting.html

Last edited 3 years ago by Klaus Espenlaub (previous) (diff)

Note: See TracTickets for help on using tickets.

Download in other formats: