Detections
Analytics
Debian DSA-2545-1 : qemu - multiple vulnerabilities
high Nessus Plugin ID 62016
Language:
Synopsis
The remote Debian host is missing a security-related update.Description
Multiple vulnerabilities have been discovered in QEMU, a fast processor emulator. The Common Vulnerabilities and Exposures project identifies the following problems :- CVE-2012-2652 :
The snapshot mode of QEMU (-snapshot) incorrectly handles temporary files used to store the current state, making it vulnerable to symlink attacks (including arbitrary file overwriting and guest information disclosure) due to a race condition.
- CVE-2012-3515 :
QEMU does not properly handle VT100 escape sequences when emulating certain devices with a virtual console backend. An attacker within a guest with access to the vulnerable virtual console could overwrite memory of QEMU and escalate privileges to that of the qemu process.
Solution
Upgrade the qemu packages.For the stable distribution (squeeze), these problems have been fixed in version 0.12.5+dfsg-3squeeze2.
See Also
https://security-tracker.debian.org/tracker/CVE-2012-2652
https://security-tracker.debian.org/tracker/CVE-2012-3515
Plugin Details
Severity: High
ID: 62016
File Name: debian_DSA-2545.nasl
Version: 1.13
Type: local
Agent: unix
Family: Debian Local Security Checks
Published: 9/10/2012
Updated: 1/11/2021
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: High
Base Score: 7.2
Temporal Score: 5.3
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:debian:debian_linux:qemu, cpe:/o:debian:debian_linux:6.0
Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l
Exploit Ease: No known exploits are available
Patch Publication Date: 9/8/2012
Reference Information
CVE: CVE-2012-2652, CVE-2012-3515
BID: 53725
DSA: 2545