Lucene search

PRIOn knowledge basePRION:CVE-2008-0928

HistoryMar 03, 2008 - 10:44 p.m.

Design/Logic Flaw

2008-03-0322:44:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

Low

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.3%

JSON

Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine.

CPENameOperatorVersion
qemueq0.1.6
qemueq0.5.3
qemueq0.4.2
qemueq0.1.5
qemueq0.5.1
qemueq0.8.2
qemueq0.5.5
qemueq0.9.0
qemueq0.7.2
qemueq0.1.3

Name	Operator	Version
qemu	eq	0.1.6
qemu	eq	0.5.3
qemu	eq	0.4.2
qemu	eq	0.1.5
qemu	eq	0.5.1
qemu	eq	0.8.2
qemu	eq	0.5.5
qemu	eq	0.9.0
qemu	eq	0.7.2
qemu	eq	0.1.3

Rows per page:

1-10 of 291

References

lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html

secunia.com/advisories/29081

secunia.com/advisories/29129

secunia.com/advisories/29136

secunia.com/advisories/29172

secunia.com/advisories/29963

secunia.com/advisories/34642

secunia.com/advisories/35031

www.debian.org/security/2009/dsa-1799

www.mandriva.com/security/advisories?name=MDVSA-2008:162

www.mandriva.com/security/advisories?name=MDVSA-2009:016

www.redhat.com/archives/fedora-package-announce/2008-February/msg00830.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00850.html

www.redhat.com/support/errata/RHSA-2008-0194.html

www.securityfocus.com/bid/28001

bugzilla.redhat.com/show_bug.cgi?id=433560

marc.info/?l=debian-security&m=120343592917055&w=2

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9706

www.redhat.com/archives/fedora-package-announce/2008-February/msg00852.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00857.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00900.html

www.redhat.com/archives/fedora-package-announce/2008-February/msg00957.html

6.5 Medium

AI Score

Confidence

Low

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

24.3%

JSON

Related for PRION:CVE-2008-0928