CVE issued putting the onus squarely on qemu's shoulders.
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-0011
** Changed in: libvirt (Ubuntu)
Status: Confirmed => Invalid
** Changed in: qemu-kvm (Ubuntu)
Status: New => Confirmed
** Bug watch added: Red Hat Bugzilla #668589
https://bugzilla.redhat.com/show_bug.cgi?id=668589
** Also affects: qemu-kvm via
https://bugzilla.redhat.com/show_bug.cgi?id=668589
Importance: Unknown
Status: Unknown
** This bug has been flagged as a security vulnerability
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/697197
Title:
Empty password allows access to VNC in libvirt
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
