3 matches found
CVE-2017-18030
The cirrusinvalidateregion function in hw/display/cirrusvga.c in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors related to negative pitch...
CVE-2017-15289
The mode4and5 write functions in hw/display/cirrusvga.c in Qemu allow local OS guest privileged users to cause a denial of service out-of-bounds write access and Qemu process crash via vectors related to dst calculation...
QEMU cirrus_vga.c code execution vulnerability
QEMU is a suite of analog processor software. A security vulnerability in QEMU cirrusvga.c allows an attacker to exploit the vulnerability to write to HOST memory, resulting in arbitrary code execution with elevated privileges...