CVE 2007-2893
Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow."
Related bugs and status
CVE-2007-2893 (Candidate) is related to these bugs:
Bug #125302: kvm-ifup fails to initialize tap networking
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
125302 | kvm-ifup fails to initialize tap networking | kvm (Ubuntu) | Medium | Fix Released |
Bug #151779: Please sync bochs 2.3-2etch1 (universe) from Debian stable (main)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
151779 | Please sync bochs 2.3-2etch1 (universe) from Debian stable (main) | bochs (Ubuntu) | Undecided | Fix Released |
Bug #163824: [bochs 2.3] Multiple vulnerabilities possibly allowing for the execution of arbitrary code or DoS
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
163824 | [bochs 2.3] Multiple vulnerabilities possibly allowing for the execution of arbitrary code or DoS | bochs (Ubuntu) | Undecided | Fix Released |
Bug #213570: kvm vulnerable to several CVEs
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
213570 | kvm vulnerable to several CVEs | kvm (Ubuntu) | High | Fix Released | ||
213570 | kvm vulnerable to several CVEs | kvm (Ubuntu Feisty) | Undecided | Won't Fix | ||
213570 | kvm vulnerable to several CVEs | kvm (Ubuntu Gutsy) | Undecided | Won't Fix | ||
213570 | kvm vulnerable to several CVEs | qemu (Ubuntu) | Undecided | Fix Released | ||
213570 | kvm vulnerable to several CVEs | qemu (Ubuntu Feisty) | Undecided | Won't Fix | ||
213570 | kvm vulnerable to several CVEs | qemu (Ubuntu Gutsy) | Undecided | Won't Fix | ||
213570 | kvm vulnerable to several CVEs | kvm (Ubuntu Dapper) | Undecided | Invalid | ||
213570 | kvm vulnerable to several CVEs | qemu (Ubuntu Dapper) | Undecided | Won't Fix | ||
213570 | kvm vulnerable to several CVEs | kvm (Ubuntu Edgy) | Undecided | Invalid | ||
213570 | kvm vulnerable to several CVEs | qemu (Ubuntu Edgy) | Undecided | Invalid | ||
213570 | kvm vulnerable to several CVEs | kvm (Ubuntu Hardy) | Undecided | Fix Released | ||
213570 | kvm vulnerable to several CVEs | qemu (Ubuntu Hardy) | Undecided | Fix Released | ||
213570 | kvm vulnerable to several CVEs | kvm (Fedora) | High | Fix Released |
See the
CVE page on Mitre.org
for more details.