Candidate: CVE-2012-3221
PublicDate: 2012-10-17 10:54:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3221
 http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
 http://www.oracle.com/technetwork/topics/security/cpuoct2012verbose-1515934.html#OVIR
Description:
 Unspecified vulnerability in the Oracle VM Virtual Box component in Oracle
 Virtualization 3.2, 4.0, and 4.1 allows local users to affect availability
 via unknown vectors related to VirtualBox Core.  NOTE: The previous
 information was obtained from the October 2012 CPU. Oracle has not
 commented on claims from another vendor that this issue is related to
 "incorrect interrupt handling."
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690777
 https://bugs.launchpad.net/ubuntu/+source/virtualbox/+bug/1044634
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_virtualbox-ose:
 debdiff: https://bugs.launchpad.net/ubuntu/+source/virtualbox/+bug/1044634
upstream_virtualbox-ose: released (4.2)
hardy_virtualbox-ose: ignored (reached end-of-life)
lucid_virtualbox-ose: released (3.1.6-dfsg-2ubuntu2.1)
natty_virtualbox-ose: ignored (reached end-of-life)
oneiric_virtualbox-ose: DNE
precise_virtualbox-ose: DNE
quantal_virtualbox-ose: DNE
devel_virtualbox-ose: DNE

Patches_virtualbox:
 debdiff: https://bugs.launchpad.net/ubuntu/+source/virtualbox/+bug/1044634
upstream_virtualbox: released (4.1.18-dfsg-1.1, 4.2)
hardy_virtualbox: DNE
lucid_virtualbox: DNE
natty_virtualbox: DNE
oneiric_virtualbox: released (4.1.2-dfsg-1ubuntu1.1)
precise_virtualbox: released (4.1.12-dfsg-2ubuntu0.2)
quantal_virtualbox: released (4.1.18-dfsg-1ubuntu1.1)
devel_virtualbox: not-affected (4.1.18-dfsg-1.1ubuntu1)