Back to search
CVE-2007-1320
Published: May 2, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple heap-based buffer overflows in the cirrus_invalidate_region function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty," aka the "bitblt" heap overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
23731
vdb-entry
x_refsource_BID
MDKSA-2007:203
vendor-advisory
x_refsource_MANDRIVA
FEDORA-2008-4386
vendor-advisory
x_refsource_FEDORA
oval:org.mitre.oval:def:10315
vdb-entry
signature
x_refsource_OVAL
35494
vdb-entry
x_refsource_OSVDB
27047
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-4604
vendor-advisory
x_refsource_FEDORA
DSA-1284
vendor-advisory
x_refsource_DEBIAN
25073
third-party-advisory
x_refsource_SECUNIA
http://taviso.decsystem.org/virtsec.pdf
x_refsource_MISC
27486
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:162
vendor-advisory
x_refsource_MANDRIVA
27085
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2009:002
vendor-advisory
x_refsource_SUSE
30413
third-party-advisory
x_refsource_SECUNIA
33568
third-party-advisory
x_refsource_SECUNIA
ADV-2007-1597
vdb-entry
x_refsource_VUPEN
27103
third-party-advisory
x_refsource_SECUNIA
29129
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0323
vendor-advisory
x_refsource_REDHAT
25095
third-party-advisory
x_refsource_SECUNIA
FEDORA-2007-713
vendor-advisory
x_refsource_FEDORA
DSA-1384
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now