Skip to Content
+ Menu

CVE-2008-5714

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

CVE-2008-5714 at MITRE

Details

Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended.

Novell Bugzilla entry: 462502,464141

SUSE Security Advisories:

SUSE-SR:2009:002, published Mon, 19 Jan 2009 14:00:00 +0000
SUSE-SR:2009:002 , published Mon, 19 Jan 2009 14:00:00 +0000
SUSE-SR:2009:008 , published Mon, 06 Apr 2009 15:00:00 +0000

Product(s)	Fixed package version(s)	References
openSUSE 10.3	`qemu >= 0.10.1-0.1`
openSUSE 11.0	`qemu-debuginfo >= 0.10.1-0.1` `qemu-debugsource >= 0.10.1-0.1`	SAT Patch Nr: 691
openSUSE 11.0	`qemu >= 0.10.1-0.1`	SAT Patch Nr: 691
openSUSE 11.1	`qemu-debuginfo >= 0.10.1-0.1.1` `qemu-debugsource >= 0.10.1-0.1.1`	SAT Patch Nr: 691
openSUSE 11.1	`qemu >= 0.10.1-0.1.1`	SAT Patch Nr: 691
openSUSE 11.0	`kvm-debuginfo >= 63-31.2` `kvm-debugsource >= 63-31.2`	SAT Patch Nr: 412
openSUSE 11.0	`kvm >= 63-31.2`	SAT Patch Nr: 412
openSUSE 11.1	`kvm-debuginfo >= 78-6.5.1` `kvm-debugsource >= 78-6.5.1`	SAT Patch Nr: 412
openSUSE 11.1	`kvm >= 78-6.5.1`	SAT Patch Nr: 412
SLES 11 DEBUGINFO	`qemu-debuginfo >= 0.10.1-0.1.1` `qemu-debugsource >= 0.10.1-0.1.1`	sle11-debuginfo. x86 sle11-debuginfo. x86-64 sle11-debuginfo. x86-64 sle11-debuginfo. x86 SAT Patch Nr: 692
SLE 11	`qemu >= 0.10.1-0.1.1`	sle11-debuginfo. x86 sle11-debuginfo. x86-64 sle11-debuginfo. x86-64 sle11-debuginfo. x86 SAT Patch Nr: 692

Customer Center

Novell® Making IT Work As One™

© 2009 Novell, Inc. All Rights Reserved.