This bug was fixed in the package qemu-kvm - 0.12.3+noroms-0ubuntu9.4
--------------- qemu-kvm (0.12.3+noroms-0ubuntu9.4) lucid-security; urgency=low
* SECURITY UPDATE: Setting VNC password to empty string silently disables all authentication (LP: #697197) - debian/patches/697197-fix-vnc-password-semantics.patch: Reverses the change introduced in Qemu by git commit 52c18be9, thanks to Neil Wilson. - CVE-2011-0011 -- Dustin Kirkland <email address hidden> Fri, 11 Feb 2011 09:57:30 -0600
This bug was fixed in the package qemu-kvm - 0.12.3+ noroms- 0ubuntu9. 4
--------------- noroms- 0ubuntu9. 4) lucid-security; urgency=low
qemu-kvm (0.12.3+
* SECURITY UPDATE: Setting VNC password to empty string silently patches/ 697197- fix-vnc- password- semantics. patch: Reverses the
disables all authentication (LP: #697197)
- debian/
change introduced in Qemu by git commit 52c18be9, thanks to Neil Wilson.
- CVE-2011-0011
-- Dustin Kirkland <email address hidden> Fri, 11 Feb 2011 09:57:30 -0600