Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability

Qemu is prone to a remote code-execution vulnerability.

Attackers can exploit this issue to execute arbitrary code with privileges of the QEMU process. Failed exploit attempts will result in a denial-of-service condition.

Information

Bugtraq ID: 97955
Class: Boundary Condition Error
CVE: CVE-2017-7980

Remote: Yes
Local: No
Published: Apr 21 2017 12:00AM
Updated: Apr 21 2017 12:00AM
Credit: Jiangxin of PSIRT Huawei Inc. and Li Qiang of 360.cn Inc.
Vulnerable: Redhat OpenStack Platform 9.0
Redhat OpenStack Platform 8.0 (Liberty)
Redhat OpenStack Platform 10
Redhat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7
Redhat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7
Redhat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6
Redhat Enterprise Linux 7
Redhat Enterprise Linux 6
+ Trustix Secure Enterprise Linux 2.0
+ Trustix Secure Linux 2.2
+ Trustix Secure Linux 2.1
+ Trustix Secure Linux 2.0
QEMU QEMU 0

Not Vulnerable:

References:

• CVE-2017-7980 Qemu: display: cirrus: OOB r/w access issues in bitblt routines (QEMU)
  
• QEMU Homepage (QEMU)
  
• Qemu: display: cirrus: OOB r/w access issues in bitblt routines (Red Hat)
  

Source: www.securityfocus.com