English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.59700
Category:Fedora Local Security Checks
Title:Fedora Core 7 FEDORA-2007-1778 (bochs)
Summary:NOSUMMARY
Description:Description:

The remote host is missing an update to bochs
announced via advisory FEDORA-2007-1778.

Bochs is a portable x86 PC emulation software package that emulates
enough of the x86 CPU, related AT hardware, and BIOS to run DOS,
Windows '95, Minix 2.0, and other OS's, all on your workstation.

Update Information:

This security update of bochs fixes CVE-2007-2894:

The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error.

ChangeLog:

* Wed Aug 22 2007 Hans de Goede 2.3-7
- Fix CVE-2007-2894 (really fix bz 241799)
* Sun Aug 5 2007 Hans de Goede 2.3-6
- Update License tag for new Licensing Guidelines compliance
* Wed Jul 18 2007 Hans de Goede 2.3-5
- Fix CVE-2007-2893 (bz 241799)
References:

[ 1 ] Bug #241799
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=241799
[ 2 ] CVE-2007-2894
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2894
Updated packages:

ed353d54332640ce5e90454664496e5c3356be9a bochs-dlxlinux-2.3-7.fc7.ppc64.rpm
fae7ed6e396f83b5f3ee154652c27839fc40ef9c bochs-gdb-2.3-7.fc7.ppc64.rpm
01aa04b4ee2ca81c56060d27a143c6932974b313 bochs-debugger-2.3-7.fc7.ppc64.rpm
06b46881ed957a141767ef8f385dc3b99563e923 bochs-debuginfo-2.3-7.fc7.ppc64.rpm
25121c686dd5f941b657c9da44a527c69b6b5f43 bochs-2.3-7.fc7.ppc64.rpm
1de6de5a69022b724811c053bd569f9eed87aa34 bochs-debuginfo-2.3-7.fc7.i386.rpm
88c8d43ec83a11a023334661523ea177a130fbe4 bochs-2.3-7.fc7.i386.rpm
f5beeed5421182235e2831cb41b1420c02fd653f bochs-gdb-2.3-7.fc7.i386.rpm
c307c52ca4674d7b7636f5e39358da2694a2dab0 bochs-dlxlinux-2.3-7.fc7.i386.rpm
a9e3eb09e06bcf9fc536dc8845ea52d50bb860bd bochs-debugger-2.3-7.fc7.i386.rpm
ed6b3aca82726d15db6b20bd5923d07da5f09855 bochs-debugger-2.3-7.fc7.x86_64.rpm
d6be3cbe367589200e2563ba06f73e4e89f948a9 bochs-dlxlinux-2.3-7.fc7.x86_64.rpm
c71c5b922211bb801dffbc69c58fca2b17c0a9f6 bochs-gdb-2.3-7.fc7.x86_64.rpm
d425d5a249edf8fa66e0945506de733d705b3db8 bochs-2.3-7.fc7.x86_64.rpm
f08e0dbfc2973dca985902da6884894386faf2fa bochs-debuginfo-2.3-7.fc7.x86_64.rpm
947d09e4a255477b8d0583597f5d81fb42f89e23 bochs-debuginfo-2.3-7.fc7.ppc.rpm
a4d1bcef13b765d9b97112aff152923f822d48bf bochs-2.3-7.fc7.ppc.rpm
963385efed878cc4bab2849d0a94cc6afcd4845a bochs-gdb-2.3-7.fc7.ppc.rpm
dba3eb9dc8cc49cfc7218c89957e380434c5b1a8 bochs-dlxlinux-2.3-7.fc7.ppc.rpm
6269d27e00e39bbfaed850fc0f504ae81aeab8a9 bochs-debugger-2.3-7.fc7.ppc.rpm
80701e12e85e27be621eef1f77c4b6933731c897 bochs-2.3-7.fc7.src.rpm

This update can be installed with the 'yum' update program. Use 'yum update
package-name' at the command line. For more information, refer to 'Managing
Software with yum,' available at http://docs.fedoraproject.org/yum/.

Solution: Apply the appropriate updates.

http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2007-1778

Risk factor : High

CVSS Score:
7.2

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2007-2894
BugTraq ID: 24246
http://www.securityfocus.com/bid/24246
http://security.gentoo.org/glsa/glsa-200711-21.xml
http://taviso.decsystem.org/virtsec.pdf
http://osvdb.org/42119
http://secunia.com/advisories/25470
http://secunia.com/advisories/27715
http://www.vupen.com/english/advisories/2007/1936
XForce ISS Database: bochs-floppy-disk-dos(34513)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34513
Common Vulnerability Exposure (CVE) ID: CVE-2007-2893
Debian Security Information: DSA-1351 (Google Search)
http://www.debian.org/security/2007/dsa-1351
http://osvdb.org/36799
http://secunia.com/advisories/26364
XForce ISS Database: bochs-ne2000-bo(34508)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34508
CopyrightCopyright (c) 2007 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.