GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sun Nov 18, 2007 12:26 am Post subject: [ GLSA 200711-21 ] Bochs: Multiple vulnerabilities |
 |
|
Gentoo Linux Security Advisory
Title: Bochs: Multiple vulnerabilities (GLSA 200711-21)
Severity: high
Exploitable: local
Date: November 17, 2007
Bug(s): #188148
ID: 200711-21
Synopsis
Multiple vulnerabilities have been discovered in Bochs, possibly allowing for the execution of arbitrary code or a Denial of Service.
Background
Bochs is a IA-32 (x86) PC emulator written in C++.
Affected Packages
Package: app-emulation/bochs
Vulnerable: < 2.3
Unaffected: >= 2.3
Architectures: All supported architectures
Description
Tavis Ormandy of the Google Security Team discovered a heap-based overflow vulnerability in the NE2000 driver (CVE-2007-2893). He also discovered a divide-by-zero error in the emulated floppy disk controller (CVE-2007-2894).
Impact
A local attacker in the guest operating system could exploit these issues to execute code outside of the virtual machine, or cause Bochs to crash.
Workaround
There is no known workaround at this time.
Resolution
All Bochs users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=app-emulation/bochs-2.3" |
References
CVE-2007-2893
CVE-2007-2894 |
|
News & Announcements
