back to article Hey, Oracle, what's in that VirtualBox security update? *crickets*

It's not just Microsoft keeping schtum on exactly what's inside its software updates. Oracle is keeping details of security patches for its VirtualBox hypervisor software a secret, members of the Debian team pointed out this week. Back in July, Oracle emitted a big batch of updates for its products, including new features in …

  1. John Robson Silver badge

    Is there a declared date?

    I can see a "not disclosing it until..." policy, but "we say nothing" is just bizarre...

    1. itzman

      Re: Is there a declared date?

      A lot of minions in big companies take the view that doing nothing doesn;t get you fired half as quick as doing the wrong thing.

      Nobody likes wage slaves with initiative.

      Or it may be that this is a patch over part of a fundamental flaw that means they have to rewrite half the IP stack or summat, and they dont want to admit that yet.

  2. Mad Chaz
    Facepalm

    Nothing new

    Oracle as taken security by obscurity as a mantra and it's surprising it hadn't hit virtualbox yet. Asking Oracle to explain what's in a patch, for any product, is like trying to make a politician tell truth strait out. Both something we wish could happen and impossible.

    Another good reason to go use any alternative to it.

  3. DJV Silver badge

    Oracle - ugh!

    My heart sank a bit when Sun bought VirtualBox, and then plummeted when Oracle bought Sun. I really hope that VirtualBox eventually escapes their clutches (via a fork, if necessary) like Open/LibreOffice and MySQL/MariaDB have done.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like