Back to search
CVE-2017-7980
Published: Jul 25, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2017:0983
vendor-advisory
x_refsource_REDHAT
[oss-security] 20170421 CVE-2017-7980 Qemu: display: cirrus: OOB r/w access issues in bitblt routines
mailing-list
x_refsource_MLIST
RHSA-2017:0982
vendor-advisory
x_refsource_REDHAT
[debian-lts-announce] 20180906 [SECURITY] [DLA 1497-1] qemu security update
mailing-list
x_refsource_MLIST
RHSA-2017:1430
vendor-advisory
x_refsource_REDHAT
GLSA-201706-03
vendor-advisory
x_refsource_GENTOO
USN-3289-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2017:1206
vendor-advisory
x_refsource_REDHAT
97955
vdb-entry
x_refsource_BID
102129
vdb-entry
x_refsource_BID
RHSA-2017:0984
vendor-advisory
x_refsource_REDHAT
RHSA-2017:0988
vendor-advisory
x_refsource_REDHAT
RHSA-2017:1441
vendor-advisory
x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=1430056
x_refsource_CONFIRM
RHSA-2017:0981
vendor-advisory
x_refsource_REDHAT
RHSA-2017:0980
vendor-advisory
x_refsource_REDHAT
RHSA-2017:1205
vendor-advisory
x_refsource_REDHAT
https://support.citrix.com/article/CTX230138
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now