CVE-2008-0928
First published: Wed Feb 20 2008(Updated: )
Ian Jackson discovered that accesses beyond end of qemu emulated disk devices can result in accesses to emulator's virtual memory space accesses and thus can allow user with sufficient privilege in guest (root, as this would need modification to kernel's driver) to break out of VM. <a href="http://marc.info/?l=debian-security&m=120343592917055&w=2">http://marc.info/?l=debian-security&m=120343592917055&w=2</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| QEMU | =0.1.0 | |
| QEMU | =0.1.1 | |
| QEMU | =0.1.2 | |
| QEMU | =0.1.3 | |
| QEMU | =0.1.4 | |
| QEMU | =0.1.5 | |
| QEMU | =0.1.6 | |
| QEMU | =0.2.0 | |
| QEMU | =0.3.0 | |
| QEMU | =0.4.0 | |
| QEMU | =0.4.1 | |
| QEMU | =0.4.2 | |
| QEMU | =0.4.3 | |
| QEMU | =0.5.0 | |
| QEMU | =0.5.1 | |
| QEMU | =0.5.2 | |
| QEMU | =0.5.3 | |
| QEMU | =0.5.4 | |
| QEMU | =0.5.5 | |
| QEMU | =0.6.0 | |
| QEMU | =0.6.1 | |
| QEMU | =0.7.0 | |
| QEMU | =0.7.1 | |
| QEMU | =0.7.2 | |
| QEMU | =0.8.0 | |
| QEMU | =0.8.1 | |
| QEMU | =0.8.2 | |
| QEMU | =0.9.0 | |
| QEMU | =0.9.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://marc.info/?l=debian-security&m=120343592917055&w=2
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=296005&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=296005&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=496041
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=341538&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=341538&action=edit
- https://bugzilla.redhat.com/show_bug.cgi?id=433560
- http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html
- http://secunia.com/advisories/29081
- http://secunia.com/advisories/29129
- http://secunia.com/advisories/29136
- http://secunia.com/advisories/29172
- http://secunia.com/advisories/29963
- http://secunia.com/advisories/34642
- http://secunia.com/advisories/35031
- http://www.debian.org/security/2009/dsa-1799
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:162
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:016
- http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00830.html
- http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00850.html
- http://www.redhat.com/support/errata/RHSA-2008-0194.html
- http://www.securityfocus.com/bid/28001
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9706
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00852.html
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00857.html
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00900.html
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00957.html
Frequently Asked Questions
What is the severity of CVE-2008-0928?
CVE-2008-0928 is considered critical due to the potential for privilege escalation and VM escape.
How do I fix CVE-2008-0928?
To fix CVE-2008-0928, upgrade to a patched version of QEMU that addresses the vulnerability.
Which versions of QEMU are affected by CVE-2008-0928?
CVE-2008-0928 affects several versions of QEMU, including 0.1.0 through 0.9.1.
What types of vulnerabilities are similar to CVE-2008-0928?
Similar vulnerabilities to CVE-2008-0928 include issues related to memory corruption and VM isolation breaches.
Can CVE-2008-0928 allow an attacker to execute arbitrary code?
Yes, CVE-2008-0928 can potentially allow an attacker with sufficient privileges in the guest to execute arbitrary code outside of the VM.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/last-modified-date
- agent/event
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2008-0928
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/qemu
- canonical/qemu
- version/qemu/0.1.0
- version/qemu/0.1.1
- version/qemu/0.1.2
- version/qemu/0.1.3
- version/qemu/0.1.4
- version/qemu/0.1.5
- version/qemu/0.1.6
- version/qemu/0.2.0
- version/qemu/0.3.0
- version/qemu/0.4.0
- version/qemu/0.4.1
- version/qemu/0.4.2
- version/qemu/0.4.3
- version/qemu/0.5.0
- version/qemu/0.5.1
- version/qemu/0.5.2
- version/qemu/0.5.3
- version/qemu/0.5.4
- version/qemu/0.5.5
- version/qemu/0.6.0
- version/qemu/0.6.1
- version/qemu/0.7.0
- version/qemu/0.7.1
- version/qemu/0.7.2
- version/qemu/0.8.0
- version/qemu/0.8.1
- version/qemu/0.8.2
- version/qemu/0.9.0
- version/qemu/0.9.1