Out-of-bounds write in QEMU - CVE-2017-7980
Published: June 6, 2017 / Updated: June 8, 2017
Vulnerability identifier: #VU6939
CSH Severity: Low
CVSS v4.0:
CVE-ID: CVE-2017-7980
CWE-ID: CWE-787
Exploitation vector: Adjecent network
Exploit availability:
No public exploit available
Vendor: QEMU
Affected software:
QEMU
QEMU
Detailed vulnerability description
Quick emulator(Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is
vulnerable to an out-of-bounds r/w access issues. It could occur while copying
VGA data via various bitblt functions.
A privileged user inside guest could use this flaw to crash the Qemu process
resulting in DoS OR potentially execute arbitrary code on a host with
privileges of Qemu process on the host.
How to mitigate CVE-2017-7980
Update to version 2.9.0-r2.