DEBIAN-CVE-2008-5714

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2008-5714

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2008-5714.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2008-5714

Upstream

CVE-2008-5714

Published

2008-12-24T18:29:15Z

Modified

2025-09-19T06:13:44Z

Summary

[none]

Details

Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended.

References

https://security-tracker.debian.org/tracker/CVE-2008-5714

Affected packages

Debian:11 / qemu

Package

Name: qemu
Purl: pkg:deb/debian/qemu?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.1-10

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / qemu

Package

Name: qemu
Purl: pkg:deb/debian/qemu?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.1-10

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / qemu

Package

Name: qemu
Purl: pkg:deb/debian/qemu?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.1-10

Ecosystem specific

{
    "urgency": "low"
}

Debian:14 / qemu

Package

Name: qemu
Purl: pkg:deb/debian/qemu?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.1-10

Ecosystem specific

{
    "urgency": "low"
}