First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 176955
Alias:
Product:
Component:
Status: RESOLVED
Resolution: DUPLICATE of bug 176674
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Javier Miqueleiz <javier@miqueleiz.com>
Add CC:
CC:
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 176955 depends on: Show dependency tree
Bug 176955 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2007-05-03 20:37 0000 
It seems the QEMU emulator is subject to some overflows and DoS.

The bugs are exploitable by a malicious application running in the hosted
environment. It would be possible to compromise the emulator and run arbitrary
code as the user owning the QEMU process.

More details in the following links.

http://www.securityfocus.com/bid/23731/info
http://taviso.decsystem.org/virtsec.pdf

------- Comment #1 From Sune Kloppenborg Jeppesen 2007-05-04 05:49:19 0000 ------- 

*** This bug has been marked as a duplicate of bug 176674 ***

------- Comment #2 From Javier Miqueleiz 2007-05-04 13:51:09 0000 ------- 
My apologies for reporting a duplicated.

It was my first security related bug. I searched in the "Gentoo Linux"
category. Not in "Gentoo Security".
First Last Prev Next    No search results available      Search page      Enter new bug