Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-4539HistoryDec 29, 2008 - 3:24 p.m.
CVE-2008-4539
2008-12-2915:24:23
Debian Security Bug Tracker
security-tracker.debian.org
15
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
28.2%
Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM before kvm-82 and (2) QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX “bitblt” heap overflow. NOTE: this issue exists because of an incorrect fix for CVE-2007-1320.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | qemu | < 0.9.1+svn20081101-1 | qemu_0.9.1+svn20081101-1_all.deb |
| Debian | 11 | all | qemu | < 0.9.1+svn20081101-1 | qemu_0.9.1+svn20081101-1_all.deb |
| Debian | 999 | all | qemu | < 0.9.1+svn20081101-1 | qemu_0.9.1+svn20081101-1_all.deb |
| Debian | 13 | all | qemu | < 0.9.1+svn20081101-1 | qemu_0.9.1+svn20081101-1_all.deb |
Related
cvelist
cvelist
ubuntucve
ubuntucve
cve
cve
openvas
openvas
Fedora Update for kvm FEDORA-2008-9556
2009-02-17 00:00:00
Fedora Update for kvm FEDORA-2008-9556
2009-02-17 00:00:00
Fedora Update for kvm FEDORA-2008-10000
2009-02-16 00:00:00
nessus
nessus
Fedora 10 : kvm-74-6.fc10 (2008-10083)
2012-09-24 00:00:00
FreeBSD : qemu -- Heap overflow in Cirrus emulation (07bb3bd2-a920-11dd-8503-0211060005df)
2008-11-03 00:00:00
Fedora 9 : kvm-65-15.fc9 (2008-11705)
2008-12-26 00:00:00
freebsd
freebsd
qemu -- Heap overflow in Cirrus emulation
2008-11-01 00:00:00
qemu -- several vulnerabilities
2007-05-01 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: kvm-74-6.fc10
2008-11-22 16:51:25
[SECURITY] Fedora 8 Update: kvm-60-7.fc8
2008-11-12 02:55:21
[SECURITY] Fedora 9 Update: kvm-65-15.fc9
2008-12-24 12:58:24
nvd
nvd
prion
prion
veracode
veracode
Buffer Overflows
2020-04-10 00:15:34
debiancve
debiancve
CVE-2007-1320
2007-05-02 17:19:00
CVE-2014-8106
2014-12-08 16:59:01
osv
osv
securityvulns
securityvulns
[SECURITY] [DSA 1384-1] New xen-utils packages fix several vulnerabilities
2007-10-06 00:00:00
debian
debian
[SECURITY] [DSA 1384-1] New xen-utils packages fix several vulnerabilities
2007-10-05 19:33:14
[SECURITY] [DSA 1799-1] New qemu packages fix several vulnerabilities
2009-05-11 21:13:09
[SECURITY] [DSA 1284-1] New qemu packages fix several vulnerabilities
2007-05-01 10:03:13
oraclelinux
oraclelinux
Important: xen security update
2007-10-02 00:00:00
centos
centos
xen security update
2007-10-03 06:01:12
redhat
redhat
(RHSA-2007:0323) Important: xen security update
2007-10-02 00:00:00
ubuntu
ubuntu
KVM vulnerabilities
2009-05-12 00:00:00
KVM regression
2009-05-13 00:00:00
f5
f5
K63519101 : Multiple QEMU vulnerabilities
2016-02-16 00:00:00
SOL63519101 - Multiple QEMU vulnerabilities
2016-02-16 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
28.2%
Related for DEBIANCVE:CVE-2008-4539