Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or potentially execute arbitrary code on the host with privileges of QEMU process on the host.
2018-07-03T01:29:00.393
2024-11-21T03:23:50.190
Modified
CVSSv3.0: 5.5 (MEDIUM)
AV:N/AC:L/Au:S/C:C/I:C/A:C
8.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | qemu | qemu | ≤ 2.8.0 | Yes |
| Application | citrix | xenserver | 6.0.2 | Yes |
| Application | citrix | xenserver | 6.2.0 | Yes |
| Application | citrix | xenserver | 6.5 | Yes |
| Application | citrix | xenserver | 7.0 | Yes |
| Application | citrix | xenserver | 7.1 | Yes |
| Application | redhat | openstack | 5.0 | Yes |
| Application | redhat | openstack | 6.0 | Yes |
| Application | redhat | openstack | 7.0 | Yes |
| Application | redhat | openstack | 8 | Yes |
| Application | redhat | openstack | 9 | Yes |
| Application | redhat | openstack | 10 | Yes |
| Operating System | debian | debian_linux | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_desktop | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_desktop | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_server | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_server | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_server_aus | 7.3 | Yes |
| Operating System | redhat | enterprise_linux_server_aus | 7.4 | Yes |
| Operating System | redhat | enterprise_linux_server_eus | 7.3 | Yes |
| Operating System | redhat | enterprise_linux_server_eus | 7.4 | Yes |
| Operating System | redhat | enterprise_linux_server_eus | 7.5 | Yes |
| Operating System | redhat | enterprise_linux_workstation | 6.0 | Yes |
| Operating System | redhat | enterprise_linux_workstation | 7.0 | Yes |
| Operating System | xen | xen | ≤ 4.7.1 | Yes |
| Operating System | xen | xen | 4.7.1 | Yes |
| Operating System | xen | xen | 4.7.1 | Yes |
| Operating System | xen | xen | 4.7.1 | Yes |
| Operating System | xen | xen | 4.7.1 | Yes |