Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-1922HistoryMay 13, 2013 - 11:55 p.m.
CVE-2013-1922
2013-05-1323:55:01
Debian Security Bug Tracker
security-tracker.debian.org
16
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
0.001 Low
EPSS
Percentile
29.5%
qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different vulnerability than CVE-2008-2004.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | qemu | < 1.5.0+dfsg-1 | qemu_1.5.0+dfsg-1_all.deb |
| Debian | 11 | all | qemu | < 1.5.0+dfsg-1 | qemu_1.5.0+dfsg-1_all.deb |
| Debian | 999 | all | qemu | < 1.5.0+dfsg-1 | qemu_1.5.0+dfsg-1_all.deb |
| Debian | 13 | all | qemu | < 1.5.0+dfsg-1 | qemu_1.5.0+dfsg-1_all.deb |
| Debian | 12 | all | xen | < 4.17.3+10-g091466ba55-1~deb12u1 | xen_4.17.3+10-g091466ba55-1~deb12u1_all.deb |
| Debian | 11 | all | xen | < 4.14.6-1 | xen_4.14.6-1_all.deb |
| Debian | 999 | all | xen | < 4.17.3+36-g54dacb5c02-1 | xen_4.17.3+36-g54dacb5c02-1_all.deb |
| Debian | 13 | all | xen | < 4.17.3+36-g54dacb5c02-1 | xen_4.17.3+36-g54dacb5c02-1_all.deb |
Related
cve
cve
prion
prion
Format string
2013-05-13 23:55:00
Format string
2008-05-12 22:20:00
Design/Logic Flaw
2008-08-08 19:41:00
ubuntucve
ubuntucve
nvd
nvd
cvelist
cvelist
nessus
nessus
Fedora 18 : qemu-1.2.2-11.fc18 (2013-6221)
2013-04-26 00:00:00
Fedora 19 : qemu-1.4.1-1.fc19 (2013-6185)
2013-04-26 00:00:00
Fedora 17 : qemu-1.0.1-6.fc17 (2013-6211)
2013-04-30 00:00:00
xen
xen
qemu-nbd format-guessing due to missing format specification
2013-04-15 15:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: qemu-1.4.1-1.fc19
2013-04-25 14:18:03
[SECURITY] Fedora 18 Update: qemu-1.2.2-11.fc18
2013-04-26 00:54:36
[SECURITY] Fedora 18 Update: qemu-1.2.2-13.fc18
2013-07-01 01:42:44
openvas
openvas
Fedora Update for qemu FEDORA-2013-6221
2013-05-03 00:00:00
Fedora Update for qemu FEDORA-2013-6221
2013-05-03 00:00:00
FreeBSD Ports: qemu, qemu-devel
2008-09-04 00:00:00
freebsd
freebsd
qemu -- "drive_init()" Disk Format Security Bypass
2008-04-28 00:00:00
debiancve
debiancve
CVE-2008-2004
2008-05-12 22:20:00
CVE-2008-1945
2008-08-08 19:41:00
veracode
veracode
Information Disclosure
2020-04-10 00:26:31
ubuntu
ubuntu
KVM vulnerabilities
2009-05-12 00:00:00
KVM regression
2009-05-13 00:00:00
redhat
redhat
(RHSA-2008:0194) Important: xen security and bug fix update
2008-05-13 00:00:00
centos
centos
xen security update
2008-05-16 01:20:08
oraclelinux
oraclelinux
xen security and bug fix update
2008-05-13 00:00:00
gentoo
gentoo
Xen: Multiple vulnerabilities
2013-09-27 00:00:00
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
0.001 Low
EPSS
Percentile
29.5%
Related for DEBIANCVE:CVE-2013-1922