FreeBSD : qemu -- Heap overflow in Cirrus emulation (07bb3bd2-a920-11dd-8503-0211060005df)
High Nessus Plugin ID 34685
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionAurelien Jarno reports :
CVE-2008-4539: fix a heap overflow in Cirrus emulation
The code in hw/cirrus_vga.c has changed a lot between CVE-2007-1320 has been announced and the patch has been applied. As a consequence it has wrongly applied and QEMU is still vulnerable to this bug if using VNC.
SolutionUpdate the affected packages.