QEMU vmsvga_fifo_read_raw function denial of service vulnerability

QEMU is an open source emulator software. A denial of service vulnerability exists in the QEMU hw/display/vmwarevga.c/vmsvgafiforeadraw function. A local OS user can cause a denial of service QEMU process crash or obtain sensitive information by changing the FIFO registrar and issuing a VGA comma...

CVE-2016-4454

The vmsvgafiforeadraw function in hw/display/vmwarevga.c in QEMU allows local guest OS administrators to obtain sensitive host memory information or cause a denial of service QEMU process crash by changing FIFO registers and issuing a VGA command, which triggers an out-of-bounds read...

Out-of-bounds

The vmsvgafiforeadraw function in hw/display/vmwarevga.c in QEMU allows local guest OS administrators to obtain sensitive host memory information or cause a denial of service QEMU process crash by changing FIFO registers and issuing a VGA command, which triggers an out-of-bounds read...

CVE-2016-4454

CVE-2016-4454 affects QEMU’s vmsvga_fifo_read_raw path in hw/display/vmware_vga.c. The vulnerability arises when a local privileged guest changes FIFO registers and issues a VGA command, triggering an out-of-bounds read that can disclose host memory or cause a QEMU process crash. Public reference...

CVE-2016-4454

The vmsvgafiforeadraw function in hw/display/vmwarevga.c in QEMU allows local guest OS administrators to obtain sensitive host memory information or cause a denial of service QEMU process crash by changing FIFO registers and issuing a VGA command, which triggers an out-of-bounds read...

CVE-2016-4454

The vmsvgafiforeadraw function in hw/display/vmwarevga.c in QEMU allows local guest OS administrators to obtain sensitive host memory information or cause a denial of service QEMU process crash by changing FIFO registers and issuing a VGA command, which triggers an out-of-bounds read...