Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2008-1945
HistoryAug 08, 2008 - 12:00 a.m.

CVE-2008-1945

2008-08-0800:00:00
ubuntu.com
ubuntu.com
7

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

23.8%

JSON

QEMU 0.9.0 does not properly handle changes to removable media, which
allows guest OS users to read arbitrary files on the host OS by using the
diskformat: parameter in the -usbdevice option to modify the disk-image
header to identify a different format, a related issue to CVE-2008-2004.

Notes

Author Note
kees this follows CVE-2008-2004 chronologically. xen-utils-3.x is in universe.
mdeslaur patch is xen-qemu-usbdisk-no-auto-format.patch in RHEL5
OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchkvm< 1:62+dfsg-0ubuntu8.1UNKNOWN
ubuntu8.10noarchkvm< 1:72+dfsg-1ubuntu6.1UNKNOWN

Related

prion 3
cve 3
debiancve 3
veracode 2
seebug 1
openvas 22
ubuntu 2
nessus 19
oraclelinux 2
redhat 2
centos 2
freebsd 1
ubuntucve 2
debian 1
osv 1
prion
prion
Design/Logic Flaw
2008-08-08 19:41:00
Format string
2008-05-12 22:20:00
Format string
2013-05-13 23:55:00
cve
cve
CVE-2008-1945
2008-08-08 19:41:00
CVE-2008-2004
2008-05-12 22:20:00
CVE-2013-1922
2013-05-13 23:55:00
debiancve
debiancve
CVE-2008-1945
2008-08-08 19:41:00
CVE-2008-2004
2008-05-12 22:20:00
CVE-2013-1922
2013-05-13 23:55:00
veracode
veracode
Information Disclosure
2020-04-10 00:27:29
Information Disclosure
2020-04-10 00:26:31
seebug
seebug
QEMU安全绕过漏洞
2008-08-11 00:00:00
openvas
openvas
Ubuntu USN-776-1 (kvm)
2009-05-20 00:00:00
Ubuntu: Security Advisory (USN-776-2)
2009-06-05 00:00:00
Ubuntu: Security Advisory (USN-776-1)
2009-05-19 00:00:00
ubuntu
ubuntu
KVM vulnerabilities
2009-05-12 00:00:00
KVM regression
2009-05-13 00:00:00
nessus
nessus
Ubuntu 8.04 LTS : kvm regression (USN-776-2)
2009-05-14 00:00:00
Ubuntu 8.04 LTS / 8.10 : kvm vulnerabilities (USN-776-1)
2009-05-13 00:00:00
RHEL 5 : xen (RHSA-2008:0892)
2008-10-02 00:00:00
oraclelinux
oraclelinux
xen security and bug fix update
2008-10-01 00:00:00
xen security and bug fix update
2008-05-13 00:00:00
redhat
redhat
(RHSA-2008:0892) Important: xen security and bug fix update
2008-10-01 00:00:00
(RHSA-2008:0194) Important: xen security and bug fix update
2008-05-13 00:00:00
centos
centos
xen security update
2008-10-05 17:02:53
xen security update
2008-05-16 01:20:08
freebsd
freebsd
qemu -- "drive_init()" Disk Format Security Bypass
2008-04-28 00:00:00
ubuntucve
ubuntucve
CVE-2008-2004
2008-05-12 00:00:00
CVE-2013-1922
2013-04-15 00:00:00
debian
debian
[SECURITY] [DSA 1799-1] New qemu packages fix several vulnerabilities
2009-05-11 21:13:09
osv
osv
qemu - several vulnerabilities
2009-05-11 00:00:00

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

23.8%

JSON
Related for UB:CVE-2008-1945
prion3cve3debiancve3veracode2seebug1openvas22ubuntu2nessus19oraclelinux2redhat2centos2freebsd1ubuntucve2debian1osv1