virtualbox.org

http://www.securityfocus.com/bid/34080 says that 2.1.4r43001 is fixed. The generic Linux package is build 43001 but some of the packages on the download page have build versions like 42893. Are those ok also? The changelog doesn't seem to mention anything relevant.

Have a look at http://www.virtualbox.org/ticket/3444 , according to this the vulnerability only occurs with the ".run" packages, not with other installation packages - so I suppose only the ".run" files were updated.