Bug#686848: [Pkg-xen-devel] Bug#686848: CVE-2007-0998: Qemu monitor can be used to access host resources

On Fri, Sep 07, 2012 at 01:30:21AM +0800, Thomas Goirand wrote: > NOTE REGARDING CVE > == > > This issue was previously reported in a different context, not to Xen > upstream, and assigned CVE-2007-0998 and fixed in a different way. We > have requested a new CVE for XSA-19 but it

Bug#686848: CVE-2007-0998: Qemu monitor can be used to access host resources

Package: xen-qemu-dm-4.0 Version: 4.0.1-2+squeeze1 Severity: grave Tags: squeeze Copying the Xen Security Advisory: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Xen Security Advisory XSA-19 guest administrator can access qemu monitor console ISSUE DESCRIPTION ==