Red Hat Customer Portal

Skip to main content


Public Date:
433560: CVE-2008-0928 Qemu insufficient block device address range checking

The MITRE CVE dictionary describes this issue as:

Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine.

Find out more about CVE-2008-0928 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (xen) RHSA-2008:0194 2008-05-13
Red Hat Enterprise Linux Virtualization 5 (xen) RHSA-2008:0194 2008-05-13

Last Modified