Debian DSA-1907-1 : kvm - several vulnerabilities

High Nessus Plugin ID 44772

Synopsis

The remote Debian host is missing a security-related update.

Description

Several vulnerabilities have been discovered in kvm, a full virtualization system. The Common Vulnerabilities and Exposures project identifies the following problems :

- CVE-2008-5714 Chris Webb discovered an off-by-one bug limiting KVM's VNC passwords to 7 characters. This flaw might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended.

- CVE-2009-3290 It was discovered that the kvm_emulate_hypercall function in KVM does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service (guest kernel crash) and read or write guest kernel memory.

The oldstable distribution (etch) does not contain kvm.

Solution

Upgrade the kvm packages.

For the stable distribution (lenny), these problems have been fixed in version 72+dfsg-5~lenny3.

See Also

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=509997

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=548975

https://security-tracker.debian.org/tracker/CVE-2008-5714

https://security-tracker.debian.org/tracker/CVE-2009-3290

https://www.debian.org/security/2009/dsa-1907

Plugin Details

Severity: High

ID: 44772

File Name: debian_DSA-1907.nasl

Version: 1.8

Type: local

Agent: unix

Published: 2010/02/24

Updated: 2018/11/10

Dependencies: 12634

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:kvm, cpe:/o:debian:debian_linux:5.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 2009/10/13

Reference Information

CVE: CVE-2008-5714, CVE-2009-3290

DSA: 1907

CWE: 189