[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ELSA-2017-0309 -- Oracle qemu-kvm_qemu-guest-agent

ID: oval:org.secpod.oval:def:1501778Date: (C)2017-02-27   (M)2023-12-20
Class: PATCHFamily: unix




Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or potentially execute arbitrary code on the host with privileges of QEMU process on the host.

Platform:
Oracle Linux 6
Product:
qemu-kvm
qemu-guest-agent
Reference:
ELSA-2017-0309
CVE-2017-2615
CVE-2016-2857
CVE    2
CVE-2016-2857
CVE-2017-2615
CPE    3
cpe:/a:kvm_group:qemu-kvm
cpe:/a:kvm_group:qemu_guest_agent
cpe:/o:oracle:linux:6

© SecPod Technologies