CVE-2017-13672

MEDIUM
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

QEMU (aka Quick Emulator), when built with the VGA display emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors involving display update.

References

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html

http://www.debian.org/security/2017/dsa-3991

http://www.openwall.com/lists/oss-security/2017/08/30/3

http://www.securityfocus.com/bid/100540

https://access.redhat.com/errata/RHSA-2018:0816

https://access.redhat.com/errata/RHSA-2018:1104

https://access.redhat.com/errata/RHSA-2018:1113

https://access.redhat.com/errata/RHSA-2018:2162

https://bugzilla.redhat.com/show_bug.cgi?id=1486560

https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg04684.html

https://usn.ubuntu.com/3575-1/

Details

Source: MITRE

Published: 2017-09-01

Updated: 2020-11-10

Type: CWE-125

Risk Information

CVSS v2

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:* versions up to 2.10.2 (inclusive)

Configuration 2

OR

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Tenable Plugins

View all (47 total)

IDNameProductFamilySeverity
136276EulerOS Virtualization for ARM 64 3.0.2.0 : qemu-kvm (EulerOS-SA-2020-1573)NessusHuawei Local Security Checks
critical
127389NewStart CGSL MAIN 4.05 : qemu-kvm Multiple Vulnerabilities (NS-SA-2019-0133)NessusNewStart CGSL Local Security Checks
medium
124947EulerOS Virtualization 3.0.1.0 : qemu (EulerOS-SA-2019-1444)NessusHuawei Local Security Checks
high
124908EulerOS Virtualization for ARM 64 3.0.1.0 : qemu-kvm (EulerOS-SA-2019-1405)NessusHuawei Local Security Checks
high
123634SUSE SLES12 Security Update : xen (SUSE-SU-2019:0827-1)NessusSuSE Local Security Checks
critical
123633SUSE SLES12 Security Update : xen (SUSE-SU-2019:0825-1)NessusSuSE Local Security Checks
critical
123493openSUSE Security Update : qemu (openSUSE-2019-1074)NessusSuSE Local Security Checks
high
122776SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2019:0582-1)NessusSuSE Local Security Checks
high
122471SUSE SLES12 Security Update : qemu (SUSE-SU-2019:0489-1)NessusSuSE Local Security Checks
high
121067Juniper Junos Space < 18.3R1 Multiple Vulnerabilities (JSA10917)NessusJunos Local Security Checks
high
121004SUSE SLES11 Security Update : xen (SUSE-SU-2019:13921-1)NessusSuSE Local Security Checks
critical
117568EulerOS Virtualization 2.5.1 : qemu-kvm (EulerOS-SA-2018-1259)NessusHuawei Local Security Checks
medium
111076CentOS 6 : qemu-kvm (CESA-2018:2162) (Spectre)NessusCentOS Local Security Checks
medium
111023OracleVM 3.4 : qemu-kvm (OVMSA-2018-0238) (Spectre)NessusOracleVM Local Security Checks
critical
111003Scientific Linux Security Update : qemu-kvm on SL6.x i386/x86_64 (20180710) (Spectre)NessusScientific Linux Local Security Checks
medium
111000RHEL 6 : qemu-kvm (RHSA-2018:2162) (Spectre)NessusRed Hat Local Security Checks
medium
110995Oracle Linux 6 : qemu-kvm (ELSA-2018-2162) (Spectre)NessusOracle Linux Local Security Checks
medium
110865EulerOS 2.0 SP3 : qemu-kvm (EulerOS-SA-2018-1201)NessusHuawei Local Security Checks
high
110457Amazon Linux AMI : qemu-kvm (ALAS-2018-1034) (Spectre)NessusAmazon Linux Local Security Checks
high
110451Amazon Linux 2 : qemu-kvm (ALAS-2018-1034) (Spectre)NessusAmazon Linux Local Security Checks
high
110148EulerOS 2.0 SP1 : qemu-kvm (EulerOS-SA-2018-1144)NessusHuawei Local Security Checks
high
109511EulerOS 2.0 SP2 : qemu-kvm (EulerOS-SA-2018-1113)NessusHuawei Local Security Checks
high
109458Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20180410)NessusScientific Linux Local Security Checks
high
109372CentOS 7 : qemu-kvm (CESA-2018:0816)NessusCentOS Local Security Checks
high
109106Oracle Linux 7 : qemu-kvm (ELSA-2018-0816)NessusOracle Linux Local Security Checks
high
109070RHEL 7 : Virtualization (RHSA-2018:1104)NessusRed Hat Local Security Checks
critical
108986RHEL 7 : qemu-kvm (RHSA-2018:0816)NessusRed Hat Local Security Checks
high
108929GLSA-201804-08 : QEMU: Multiple vulnerabilities (Spectre)NessusGentoo Local Security Checks
critical
107145Ubuntu 14.04 LTS / 16.04 LTS : qemu regression (USN-3575-2)NessusUbuntu Local Security Checks
critical
106927Ubuntu 14.04 LTS / 16.04 LTS / 17.10 : qemu vulnerabilities (USN-3575-1)NessusUbuntu Local Security Checks
critical
105960Fedora 27 : xen (2017-b4329d6ee5)NessusFedora Local Security Checks
medium
105149SUSE SLES11 Security Update : xen (SUSE-SU-2017:3242-1)NessusSuSE Local Security Checks
critical
105148SUSE SLES12 Security Update : xen (SUSE-SU-2017:3239-1)NessusSuSE Local Security Checks
critical
105098SUSE SLES12 Security Update : xen (SUSE-SU-2017:3236-1)NessusSuSE Local Security Checks
critical
104780SUSE SLES11 Security Update : kvm (SUSE-SU-2017:3084-1)NessusSuSE Local Security Checks
critical
104495SUSE SLES12 Security Update : qemu (SUSE-SU-2017:2969-1)NessusSuSE Local Security Checks
critical
104494SUSE SLES11 Security Update : kvm (SUSE-SU-2017:2963-1)NessusSuSE Local Security Checks
critical
104471SUSE SLES12 Security Update : qemu (SUSE-SU-2017:2946-1)NessusSuSE Local Security Checks
critical
104446Fedora 26 : 2:qemu (2017-9149114fba)NessusFedora Local Security Checks
high
104429SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:2936-1)NessusSuSE Local Security Checks
high
104424openSUSE Security Update : qemu (openSUSE-2017-1249)NessusSuSE Local Security Checks
high
104423openSUSE Security Update : qemu (openSUSE-2017-1248)NessusSuSE Local Security Checks
high
104376SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:2924-1)NessusSuSE Local Security Checks
high
104347Fedora 25 : xen (2017-d4709b0d8b)NessusFedora Local Security Checks
high
104310Fedora 26 : xen (2017-5bcddc1984)NessusFedora Local Security Checks
high
103655Debian DSA-3991-1 : qemu - security updateNessusDebian Local Security Checks
high
103538Virtuozzo 7 : ksm-vz / prl-disp-legacy / prl-disp-service / etc (VZA-2017-087)NessusVirtuozzo Local Security Checks
medium