安全研究
安全漏洞
QEMU VNC 'monitor.c'不安全密码漏洞
发布日期:2008-11-23
更新日期:2009-10-16
受影响系统:
QEMU QEMU 0.9.1描述:
QEMU QEMU 0.9
BUGTRAQ ID: 33020
CVE(CAN) ID: CVE-2008-5714
QEMU是一款开放源码的模拟器软件。
QEMU 9.1 monitor.c内存在单字节溢出漏洞,本应为8字节的VNC passwords变成了7字节,导致攻击者可以实施暴力破解攻击。
diff --git a/monitor.c b/monitor.c
index 22360fc..6ae5729 100644
--- a/monitor.c
+++ b/monitor.c
@@ -433,7 +433,7 @@ static void do_change_vnc(const char *target)
if (strcmp(target, "passwd") == 0 ||
strcmp(target, "password") == 0) {
char password[9];
- monitor_readline("Password: ", 1, password, sizeof(password)-1);
+ monitor_readline("Password: ", 1, password, sizeof(password));
password[sizeof(password)-1] = '\0';
if (vnc_display_password(NULL, password) < 0)
term_printf("could not set VNC server password\n");
<*来源:Chris Webb
链接:http://xforce.iss.net/xforce/xfdb/47683
*>
建议:
厂商补丁:
QEMU
----
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://fabrice.bellard.free.fr/qemu/
Debian Linux 5.0 ia-64
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Ubuntu Ubuntu Linux 8.04 LTS powerpc
Ubuntu kvm-source_62+dfsg-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.1_all.deb
Ubuntu kvm-source_62+dfsg-0ubuntu8.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.2_all.deb
Ubuntu Ubuntu Linux 8.10 powerpc
Ubuntu kvm-source_72+dfsg-1ubuntu6.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_72+df sg-1ubuntu6.1_all.deb
Ubuntu Ubuntu Linux 8.10 i386
Ubuntu kvm-source_72+dfsg-1ubuntu6.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_72+df sg-1ubuntu6.1_all.deb
Ubuntu kvm_72+dfsg-1ubuntu6.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/k/kvm/kvm_72+dfsg-1ubuntu6 .1_i386.deb
Ubuntu Ubuntu Linux 8.04 LTS sparc
Ubuntu kvm-source_62+dfsg-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.1_all.deb
Ubuntu kvm-source_62+dfsg-0ubuntu8.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.2_all.deb
Debian Linux 5.0 alpha
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Debian Linux 5.0 ia-32
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Debian kvm_72+dfsg-5~lenny3_i386.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm_72+dfsg-5~lenny 3_i386.deb
Ubuntu Ubuntu Linux 8.04 LTS amd64
Ubuntu kvm-source_62+dfsg-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.1_all.deb
Ubuntu kvm-source_62+dfsg-0ubuntu8.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.2_all.deb
Ubuntu kvm_62+dfsg-0ubuntu8.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/k/kvm/kvm_62+dfsg-0ubuntu8 .1_amd64.deb
Ubuntu kvm_62+dfsg-0ubuntu8.2_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/k/kvm/kvm_62+dfsg-0ubuntu8 .2_amd64.deb
Debian Linux 5.0 s/390
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Debian Linux 5.0 mipsel
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Ubuntu Ubuntu Linux 8.04 LTS lpia
Ubuntu kvm-source_62+dfsg-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.1_all.deb
Ubuntu kvm-source_62+dfsg-0ubuntu8.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.2_all.deb
Ubuntu Ubuntu Linux 8.10 lpia
Ubuntu kvm-source_72+dfsg-1ubuntu6.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_72+df sg-1ubuntu6.1_all.deb
Debian Linux 5.0 hppa
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Ubuntu Ubuntu Linux 8.10 sparc
Ubuntu kvm-source_72+dfsg-1ubuntu6.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_72+df sg-1ubuntu6.1_all.deb
Debian Linux 5.0 m68k
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Mandriva Linux Mandrake 2009.0
Mandriva dkms-kqemu-1.4.0-0.pre1.0.1mdv2009.0.i586.rpm
http://www.mandriva.com/en/download/
Mandriva kvm-74-3.1mdv2009.0.i586.rpm
http://www.mandriva.com/en/download/
Mandriva qemu-0.9.1-0.r5137.1.1mdv2009.0.i586.rpm
http://www.mandriva.com/en/download/
Mandriva qemu-img-0.9.1-0.r5137.1.1mdv2009.0.i586.rpm
http://www.mandriva.com/en/download/
Debian Linux 5.0 arm
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Debian Linux 5.0 armel
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Debian Linux 5.0
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Ubuntu Ubuntu Linux 8.04 LTS i386
Ubuntu kvm-source_62+dfsg-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.1_all.deb
Ubuntu kvm-source_62+dfsg-0ubuntu8.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_62+df sg-0ubuntu8.2_all.deb
Ubuntu kvm_62+dfsg-0ubuntu8.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/k/kvm/kvm_62+dfsg-0ubuntu8 .1_i386.deb
Ubuntu kvm_62+dfsg-0ubuntu8.2_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/k/kvm/kvm_62+dfsg-0ubuntu8 .2_i386.deb
Mandriva Linux Mandrake 2009.0 x86_64
Mandriva dkms-kqemu-1.4.0-0.pre1.0.1mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/
Mandriva kvm-74-3.1mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/
Mandriva qemu-0.9.1-0.r5137.1.1mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/
Mandriva qemu-img-0.9.1-0.r5137.1.1mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/
Debian Linux 5.0 amd64
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Debian kvm_72+dfsg-5~lenny3_amd64.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm_72+dfsg-5~lenny 3_amd64.deb
Debian Linux 5.0 mips
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Ubuntu Ubuntu Linux 8.10 amd64
Ubuntu kvm-source_72+dfsg-1ubuntu6.1_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/k/kvm/kvm-source_72+df sg-1ubuntu6.1_all.deb
Ubuntu kvm_72+dfsg-1ubuntu6.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/k/kvm/kvm_72+dfsg-1ubuntu6 .1_amd64.deb
Debian Linux 5.0 powerpc
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
Debian Linux 5.0 sparc
Debian kvm-source_72+dfsg-5~lenny3_all.deb
http://security.debian.org/pool/updates/main/k/kvm/kvm-source_72+dfsg- 5~lenny3_all.deb
浏览次数:1803
严重程度:0(网友投票)
绿盟科技给您安全的保障