PT-2008-3471 · Qemu+1 · Qemu+1

Avi Kivity

Published

2008-08-08

Updated

2024-06-15

CVE-2008-1945

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions QEMU version 0.9.0

Description The issue arises from improper handling of changes to removable media, allowing guest OS users to read arbitrary files on the host OS. This is achieved by modifying the disk-image header using the diskformat: parameter in the -usbdevice option to identify a different format.

Recommendations For QEMU version 0.9.0, consider restricting access to the -usbdevice option or avoiding the use of the diskformat: parameter until a fix is available. As a temporary workaround, restrict the ability of guest OS users to modify removable media settings to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-1945

DSA-1799-1

OPENSUSE-SU-2024:10233-1

OPENSUSE-SU-2024:10285-1

RHSA-2008:0892

RHSA-2008_0892

Affected Products

Qemu

Red Hat

PT-2008-3471 · Qemu+1 · Qemu+1

CVE-2008-1945

Related Identifiers

Affected Products

References · 76