CVE-2017-7980

MEDIUM

Description

Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation.

ID	Name	Product	Family	Severity
127343	NewStart CGSL MAIN 4.05 : qemu-kvm Multiple Vulnerabilities (NS-SA-2019-0108)	Nessus	NewStart CGSL Local Security Checks	high
117351	Debian DLA-1497-1 : qemu security update (Spectre)	Nessus	Debian Local Security Checks	high
111023	OracleVM 3.4 : qemu-kvm (OVMSA-2018-0238) (Spectre)	Nessus	OracleVM Local Security Checks	high
105083	Citrix XenServer Multiple Vulnerabilities (CTX230138)	Nessus	Misc.	high
104780	SUSE SLES11 Security Update : kvm (SUSE-SU-2017:3084-1)	Nessus	SuSE Local Security Checks	high
104495	SUSE SLES12 Security Update : qemu (SUSE-SU-2017:2969-1)	Nessus	SuSE Local Security Checks	high
104494	SUSE SLES11 Security Update : kvm (SUSE-SU-2017:2963-1)	Nessus	SuSE Local Security Checks	high
104471	SUSE SLES12 Security Update : qemu (SUSE-SU-2017:2946-1)	Nessus	SuSE Local Security Checks	high
102008	Fedora 25 : 2:qemu (2017-f941184db1)	Nessus	Fedora Local Security Checks	high
101909	Debian DLA-1035-1 : qemu security update	Nessus	Debian Local Security Checks	high
101851	EulerOS 2.0 SP2 : qemu-kvm (EulerOS-SA-2017-1119)	Nessus	Huawei Local Security Checks	medium
101850	EulerOS 2.0 SP1 : qemu-kvm (EulerOS-SA-2017-1118)	Nessus	Huawei Local Security Checks	medium
101758	openSUSE Security Update : qemu (openSUSE-2017-822)	Nessus	SuSE Local Security Checks	high
101479	Virtuozzo 7 : qemu-img / qemu-kvm / qemu-kvm-common / etc (VZLSA-2017-1430)	Nessus	Virtuozzo Local Security Checks	medium
101463	Virtuozzo 6 : qemu-guest-agent / qemu-img / qemu-kvm / etc (VZLSA-2017-1206)	Nessus	Virtuozzo Local Security Checks	high
101227	SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2017:1774-1)	Nessus	SuSE Local Security Checks	high
100779	Scientific Linux Security Update : qemu-kvm on SL7.x x86_64	Nessus	Scientific Linux Local Security Checks	medium
100777	RHEL 7 : qemu-kvm (RHSA-2017:1430)	Nessus	Red Hat Local Security Checks	medium
100776	Oracle Linux 7 : qemu-kvm (ELSA-2017-1430)	Nessus	Oracle Linux Local Security Checks	medium
100770	CentOS 7 : qemu-kvm (CESA-2017:1430)	Nessus	CentOS Local Security Checks	medium
100630	GLSA-201706-03 : QEMU: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
100250	Ubuntu 14.04 LTS / 16.04 LTS / 16.10 / 17.04 : qemu vulnerabilities (USN-3289-1)	Nessus	Ubuntu Local Security Checks	high
100142	RHEL 6 : qemu-kvm-rhev (RHSA-2017:1205)	Nessus	Red Hat Local Security Checks	high
100133	Debian DLA-939-1 : qemu-kvm security update	Nessus	Debian Local Security Checks	high
100115	OracleVM 3.4 : qemu-kvm (OVMSA-2017-0101)	Nessus	OracleVM Local Security Checks	high
100097	Scientific Linux Security Update : qemu-kvm on SL6.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
100092	RHEL 6 : qemu-kvm (RHSA-2017:1206)	Nessus	Red Hat Local Security Checks	high
100088	Oracle Linux 6 : qemu-kvm (ELSA-2017-1206)	Nessus	Oracle Linux Local Security Checks	high
100068	CentOS 6 : qemu-kvm (CESA-2017:1206)	Nessus	CentOS Local Security Checks	high
99963	SUSE SLES12 Security Update : xen (SUSE-SU-2017:1148-1)	Nessus	SuSE Local Security Checks	medium
99962	SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:1147-1)	Nessus	SuSE Local Security Checks	high
99961	SUSE SLES11 Security Update : xen (SUSE-SU-2017:1146-1)	Nessus	SuSE Local Security Checks	high
99960	SUSE SLES11 Security Update : xen (SUSE-SU-2017:1145-1)	Nessus	SuSE Local Security Checks	high

CVE-2017-7980

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0