QwikSec

Security Database

CVE

CWE

Training

CVE-2016-7170

Published: Dec 10, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to cursor.mask[] and cursor.image[] array sizes when processing a DEFINE_CURSOR svga command.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=167d97a3def77ee2dbf6e908b0ecbfe2103977db

x_refsource_CONFIRM

openSUSE-SU-2016:3237

vendor-advisory

x_refsource_SUSE

[qemu-devel] 20160908 [PATCH] vmsvga: correct bitmap and pixmap size checks

mailing-list

x_refsource_MLIST

[oss-security] 20160909 Re: CVE Request Qemu: vmware_vga: OOB stack memory access when processing svga command

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20181130 [SECURITY] [DLA 1599-1] qemu security update

mailing-list

x_refsource_MLIST

[oss-security] 20160909 CVE Request Qemu: vmware_vga: OOB stack memory access when processing svga command

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.