qemu -- denial of service vulnerability in VNC

ID 67FEBA97-B1B5-11E5-9728-002590263BF5
Type freebsd
Reporter FreeBSD
Modified 2015-12-08T00:00:00


Prasad J Pandit, Red Hat Product Security Team, reports:

Qemu emulator built with the VNC display driver support is vulnerable to an arithmetic exception flaw. It occurs on the VNC server side while processing the 'SetPixelFormat' messages from a client. A privileged remote client could use this flaw to crash the guest resulting in DoS.