Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-1922

Опубликовано: 15 апр. 2013
Источник: redhat
CVSS2: 4.7

Описание

qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different vulnerability than CVE-2008-2004.

Отчет

Not vulnerable. This issue does not affect versions of kvm and xen packages as shipped with Red Hat Enterprise Linux 5. This issue does not affect versions of qemu-kvm packages as shipped with Red Hat Enterprise Linux 5 and 6.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kvmNot affected
Red Hat Enterprise Linux 6qemu-kvmNot affected
Red Hat OpenStack Platform 2.0openstack-novaWill not fix
Red Hat OpenStack Platform 2.0qemu-kvm-rhevWill not fix
Red Hat OpenStack Platform 2.1openstack-novaWill not fix
RHOS Essex Releaseopenstack-novaWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=923219kvm: qemu-nbd block format auto-detection vulnerability

4.7 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2013-1922

ubuntu
больше 12 лет назад

qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different vulnerability than CVE-2008-2004.

nvd логотип

CVE-2013-1922

nvd
больше 12 лет назад

qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different vulnerability than CVE-2008-2004.

debian логотип

CVE-2013-1922

debian
больше 12 лет назад

qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw ...

github логотип

GHSA-v7fq-6h69-259m

github
больше 3 лет назад

qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different vulnerability than CVE-2008-2004.

4.7 Medium

CVSS2