Debian Local Security Checks : Debian Security Advisory DSA 2396-1 (qemu-kvm)

Resumen de Precio/Funciones | Ordenar | Nuevas Vulnerabilidades | Confidencialidad | Búsqueda de Vulnerabilidad

Búsqueda de Vulnerabilidad		Buscar 61204 Descripciones CVE y 32582 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.71093

Categoría: Debian Local Security Checks

Título: Debian Security Advisory DSA 2396-1 (qemu-kvm)

Resumen: Debian Security Advisory DSA 2396-1 (qemu-kvm)

Descripción: The remote host is missing an update to qemu-kvm
announced via advisory DSA 2396-1.

Nicolae Mogoraenu discovered a heap overflow in the emulated e1000e
network interface card of KVM, a solution for full virtualization on
x86 hardware, which could result in denial of service or privilege
escalation.

This update also fixes a guest-triggerable memory corruption in
VNC handling.

For the stable distribution (squeeze), this problem has been fixed in
version 0.12.5+dfsg-5+squeeze8.

For the unstable distribution (sid), this problem has been fixed in
version 1.0+dfsg-5.

We recommend that you upgrade your qemu-kvm packages.

Solution:
http://www.securityspace.com/smysecure/catid.html?in=DSA%202396-1

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-0029
https://bugzilla.redhat.com/show_bug.cgi?id=772075
http://lists.fedoraproject.org/pipermail/package-announce/2012-June/081972.html
http://www.redhat.com/support/errata/RHSA-2012-0050.html
RedHat Security Advisories: RHSA-2012:0370
http://rhn.redhat.com/errata/RHSA-2012-0370.html
SuSE Security Announcement: openSUSE-SU-2012:0207 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-02/msg00009.html
SuSE Security Announcement: SUSE-SU-2012:1320 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html
http://www.ubuntu.com/usn/USN-1339-1
BugTraq ID: 51642
http://www.securityfocus.com/bid/51642
http://secunia.com/advisories/47740
http://secunia.com/advisories/47741
http://secunia.com/advisories/47992
http://secunia.com/advisories/48318
XForce ISS Database: qemu-processtxdesc-bo(72656)
http://xforce.iss.net/xforce/xfdb/72656

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 32582 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

Registro de Nuevo Usuario
Email:

Usuario:

Contraseña:

Envíeme por email sus boletines mensuales, informándome los últimos servicios, mejoras y encuestas.

Por favor envíeme por email un anuncio de prueba de vulnerabilidades siempre que se agregue una nueva prueba.

Privacidad

Ingreso de Usuario Registrado

Usuario:

Contraseña:

¿Olvidó su usuario o contraseña??

Email/ID de Usario:

ID de Prueba:	1.3.6.1.4.1.25623.1.0.71093
Categoría:	Debian Local Security Checks
Título:	Debian Security Advisory DSA 2396-1 (qemu-kvm)
Resumen:	Debian Security Advisory DSA 2396-1 (qemu-kvm)
Descripción:	The remote host is missing an update to qemu-kvm announced via advisory DSA 2396-1. Nicolae Mogoraenu discovered a heap overflow in the emulated e1000e network interface card of KVM, a solution for full virtualization on x86 hardware, which could result in denial of service or privilege escalation. This update also fixes a guest-triggerable memory corruption in VNC handling. For the stable distribution (squeeze), this problem has been fixed in version 0.12.5+dfsg-5+squeeze8. For the unstable distribution (sid), this problem has been fixed in version 1.0+dfsg-5. We recommend that you upgrade your qemu-kvm packages. Solution: http://www.securityspace.com/smysecure/catid.html?in=DSA%202396-1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0029 https://bugzilla.redhat.com/show_bug.cgi?id=772075 http://lists.fedoraproject.org/pipermail/package-announce/2012-June/081972.html http://www.redhat.com/support/errata/RHSA-2012-0050.html RedHat Security Advisories: RHSA-2012:0370 http://rhn.redhat.com/errata/RHSA-2012-0370.html SuSE Security Announcement: openSUSE-SU-2012:0207 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-02/msg00009.html SuSE Security Announcement: SUSE-SU-2012:1320 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00002.html http://www.ubuntu.com/usn/USN-1339-1 BugTraq ID: 51642 http://www.securityfocus.com/bid/51642 http://secunia.com/advisories/47740 http://secunia.com/advisories/47741 http://secunia.com/advisories/47992 http://secunia.com/advisories/48318 XForce ISS Database: qemu-processtxdesc-bo(72656) http://xforce.iss.net/xforce/xfdb/72656
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com