CVE-2008-0928

Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.7 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 27%
Affected Products (NVD)
VendorProductVersion
qemuqemu
0.1.0
qemuqemu
0.1.1
qemuqemu
0.1.2
qemuqemu
0.1.3
qemuqemu
0.1.4
qemuqemu
0.1.5
qemuqemu
0.1.6
qemuqemu
0.2.0
qemuqemu
0.3.0
qemuqemu
0.4.0
qemuqemu
0.4.1
qemuqemu
0.4.2
qemuqemu
0.4.3
qemuqemu
0.5.0
qemuqemu
0.5.1
qemuqemu
0.5.2
qemuqemu
0.5.3
qemuqemu
0.5.4
qemuqemu
0.5.5
qemuqemu
0.6.0
qemuqemu
0.6.1
qemuqemu
0.7.0
qemuqemu
0.7.1
qemuqemu
0.7.2
qemuqemu
0.8.0
qemuqemu
0.8.1
qemuqemu
0.8.2
qemuqemu
0.9.0
qemuqemu
0.9.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
qemu
bookworm
1:7.2+dfsg-7+deb12u7
fixed
bullseye
1:5.2+dfsg-11+deb11u3
fixed
bullseye (security)
1:5.2+dfsg-11+deb11u2
fixed
sid
1:9.1.1+ds-2
fixed
trixie
1:9.1.1+ds-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
kvm
dapper
dne
edgy
dne
feisty
ignored
gutsy
ignored
hardy
Fixed 1:62+dfsg-0ubuntu3
released
intrepid
not-affected
jaunty
not-affected
karmic
dne
lucid
dne
maverick
dne
natty
dne
oneiric
dne
qemu
dapper
ignored
edgy
ignored
feisty
ignored
gutsy
ignored
hardy
ignored
intrepid
not-affected
jaunty
not-affected
karmic
dne
lucid
dne
maverick
dne
natty
dne
oneiric
dne
qemu-kvm
dapper
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
not-affected
lucid
not-affected
maverick
not-affected
natty
not-affected
oneiric
not-affected
xen-3.0
dapper
dne
edgy
ignored
feisty
ignored
gutsy
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
dne
lucid
dne
maverick
dne
natty
dne
oneiric
dne
xen-3.1
dapper
dne
edgy
dne
feisty
dne
gutsy
ignored
hardy
ignored
intrepid
ignored
jaunty
dne
karmic
dne
lucid
dne
maverick
dne
natty
dne
oneiric
dne
xen-3.2
dapper
dne
edgy
dne
feisty
dne
gutsy
dne
hardy
ignored
intrepid
dne
jaunty
dne
karmic
dne
lucid
dne
maverick
dne
natty
dne
oneiric
dne
xen-3.3
dapper
dne
edgy
dne
feisty
dne
gutsy
dne
hardy
dne
intrepid
not-affected
jaunty
not-affected
karmic
not-affected
lucid
not-affected
maverick
not-affected
natty
not-affected
oneiric
dne
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
qemu
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-block-curl
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-block-iscsi
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-block-rbd
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-block-ssh
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-guest-agent
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-ipxe
suse enterprise sap 15
1.0.0-7.5
fixed
suse enterprise server 15
1.0.0-7.5
fixed
qemu-kvm
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-lang
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
qemu-seabios
suse enterprise sap 15
1.11.0-7.5
fixed
suse enterprise server 15
1.11.0-7.5
fixed
qemu-sgabios-8
suse enterprise sap 15
7.5
fixed
suse enterprise server 15
7.5
fixed
qemu-vgabios
suse enterprise sap 15
1.11.0-7.5
fixed
suse enterprise server 15
1.11.0-7.5
fixed
qemu-x86
suse enterprise sap 15
2.11.1-7.5
fixed
suse enterprise server 15
2.11.1-7.5
fixed
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html
http://marc.info/?l=debian-security&m=120343592917055&w=2
http://secunia.com/advisories/29081
http://secunia.com/advisories/29129
http://secunia.com/advisories/29136
http://secunia.com/advisories/29172
http://secunia.com/advisories/29963
http://secunia.com/advisories/34642
http://secunia.com/advisories/35031
http://www.debian.org/security/2009/dsa-1799
http://www.mandriva.com/security/advisories?name=MDVSA-2008:162
http://www.mandriva.com/security/advisories?name=MDVSA-2009:016
http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00830.html
http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00850.html
http://www.redhat.com/support/errata/RHSA-2008-0194.html
http://www.securityfocus.com/bid/28001
https://bugzilla.redhat.com/show_bug.cgi?id=433560
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9706
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00852.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00857.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00900.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00957.html
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html
http://marc.info/?l=debian-security&m=120343592917055&w=2
http://secunia.com/advisories/29081
http://secunia.com/advisories/29129
http://secunia.com/advisories/29136
http://secunia.com/advisories/29172
http://secunia.com/advisories/29963
http://secunia.com/advisories/34642
http://secunia.com/advisories/35031
http://www.debian.org/security/2009/dsa-1799
http://www.mandriva.com/security/advisories?name=MDVSA-2008:162
http://www.mandriva.com/security/advisories?name=MDVSA-2009:016
http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00830.html
http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00850.html
http://www.redhat.com/support/errata/RHSA-2008-0194.html
http://www.securityfocus.com/bid/28001
https://bugzilla.redhat.com/show_bug.cgi?id=433560
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9706
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00852.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00857.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00900.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00957.html