Your submission was sent successfully! Close

CVE-2007-2893

Published: 30 May 2007

Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow."

Priority

Medium

Status

Package Release Status
bochs
Launchpad, Ubuntu, Debian
Upstream Needs triage

kvm
Launchpad, Ubuntu, Debian
Upstream Needed

qemu
Launchpad, Ubuntu, Debian
Upstream
Released
Patches:
Vendor: http://www.debian.org/security/2007/dsa-1284
qemu-kvm
Launchpad, Ubuntu, Debian
Upstream Needs triage