DSA-3991-1 qemu -- qemu
|ID: oval:org.secpod.oval:def:603121||Date: (C)2017-10-05 (M)2017-10-06|
|Class: PATCH||Family: unix|
Multiple vulnerabilities were found in in qemu, a fast processor emulator: CVE-2017-9375 Denial of service via memory leak in USB XHCI emulation. CVE-2017-12809 Denial of service in the CDROM device drive emulation. CVE-2017-13672 Denial of service in VGA display emulation. CVE-2017-13711 Denial of service in SLIRP networking support. CVE-2017-14167 Incorrect validation of multiboot headers could result in the execution of arbitrary code.