Mandriva Linux Security Advisory : qemu (MDVSA-2009:008)
High Nessus Plugin ID 36993
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionSecurity vulnerabilities have been discovered and corrected in VNC server of qemu version 0.9.1 and earlier, which could lead to denial-of-service attacks (CVE-2008-2382), and make it easier for remote crackers to guess the VNC password (CVE-2008-5714).
The updated packages have been patched to prevent this.
SolutionUpdate the affected dkms-kqemu, qemu and / or qemu-img packages.