oval:org.mitre.oval:def:7760

Definition Id: oval:org.mitre.oval:def:7760

Oval ID:	oval:org.mitre.oval:def:7760
Title:	DSA-1907 kvm -- several vulnerabilities
Description:	Several vulnerabilities have been discovered in kvm, a full virtualization system. The Common Vulnerabilities and Exposures project identifies the following problems: Chris Webb discovered an off-by-one bug limiting KVM's VNC passwords to 7 characters. This flaw might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended. It was discovered that the kvm_emulate_hypercall function in KVM does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service (guest kernel crash) and read or write guest kernel memory. The oldstable distribution (etch) does not contain kvm.
Family:	unix	Class:	patch
Reference(s):	DSA-1907 CVE-2008-5714 CVE-2009-3290	Version:	3
Platform(s):	Debian GNU/Linux 5.0	Product(s):	kvm
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND kvm-source is earlier than 72+dfsg-5~lenny3 OR Architecture dependent section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND kvm is earlier than 72+dfsg-5~lenny3

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:7760