FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

qemu -- Translation Block Local Denial of Service Vulnerability

Affected packages
qemu < 0.9.0_4
0.9.0s.20070101* <= qemu < 0.9.0s.20070802_1
qemu-devel < 0.9.0_4
0.9.0s.20070101* <= qemu-devel < 0.9.0s.20070802_1

Details

VuXML ID 30f5ca1d-a90b-11dc-bf13-0211060005df
Discovery 2007-11-30
Entry 2007-12-12
Modified 2007-12-14

SecurityFocus reports:

QEMU is prone to a local denial-of-service vulnerability because it fails to perform adequate boundary checks when handling user-supplied input.

Attackers can exploit this issue to cause denial-of-service conditions. Given the nature of the issue, attackers may also be able to execute arbitrary code, but this has not been confirmed.

References

Bugtraq ID 26666
CVE Name CVE-2007-6227
URL http://www.securityfocus.com/archive/1/484429