Launchpad CVE tracker

CVE 2017-7718

hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functions.

Related bugs and status

CVE-2017-7718 (Candidate) is related to these bugs:

Bug #1581936: Frozen Windows 7 VMs with VGA CVE-2016-3712 fix (2.6.0 and 2.5.1.1)

		In	Importance	Status
1581936	Frozen Windows 7 VMs with VGA CVE-2016-3712 fix (2.6.0 and 2.5.1.1)	QEMU	Undecided	Fix Released
1581936	Frozen Windows 7 VMs with VGA CVE-2016-3712 fix (2.6.0 and 2.5.1.1)	qemu (Ubuntu)	High	Fix Released
1581936	Frozen Windows 7 VMs with VGA CVE-2016-3712 fix (2.6.0 and 2.5.1.1)	qemu (Ubuntu Xenial)	High	Fix Released
1581936	Frozen Windows 7 VMs with VGA CVE-2016-3712 fix (2.6.0 and 2.5.1.1)	qemu (Ubuntu Trusty)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2017041...
CONFIRM: http://git.qemu-projec...
CONFIRM: https://bugzilla.redha...
BID: 97957
GENTOO: GLSA-201706-03
REDHAT: RHSA-2017:0980
REDHAT: RHSA-2017:0981
REDHAT: RHSA-2017:0982
REDHAT: RHSA-2017:0983
REDHAT: RHSA-2017:0984
REDHAT: RHSA-2017:0988
REDHAT: RHSA-2017:1205
REDHAT: RHSA-2017:1206
REDHAT: RHSA-2017:1430
REDHAT: RHSA-2017:1431
REDHAT: RHSA-2017:1441
MLIST: [debian-lts-announce] ...

Launchpad.net

CVE 2017-7718

Related bugs and status

Related bugs

References