PublicDateAtUSN: 2017-04-21
Candidate: CVE-2017-7980
PublicDate: 2017-07-25 14:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7980
 http://www.openwall.com/lists/oss-security/2017/04/21/1
 https://ubuntu.com/security/notices/USN-3289-1
Description:
 Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick
 Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute
 arbitrary code or cause a denial of service (crash) via vectors related to
 a VNC client updating its display after a VGA operation.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Li Qiang and Jiangxin
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]

Patches_qemu-kvm:
upstream_qemu-kvm: needs-triage
precise_qemu-kvm: ignored (reached end-of-life)
precise/esm_qemu-kvm: ignored (end of ESM support, was needed)
trusty_qemu-kvm: DNE
trusty/esm_qemu-kvm: DNE
vivid/ubuntu-core_qemu-kvm: DNE
vivid/stable-phone-overlay_qemu-kvm: DNE
xenial_qemu-kvm: DNE
yakkety_qemu-kvm: DNE
zesty_qemu-kvm: DNE
artful_qemu-kvm: DNE
bionic_qemu-kvm: DNE
cosmic_qemu-kvm: DNE
disco_qemu-kvm: DNE
eoan_qemu-kvm: DNE
focal_qemu-kvm: DNE
groovy_qemu-kvm: DNE
hirsute_qemu-kvm: DNE
devel_qemu-kvm: DNE

Patches_qemu:
 upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=026aeffcb4752054830ba203020ed6eb05bcaba8
 upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=ffaf857778286ca54e3804432a2369a279e73aa7
 upstream: http://git.qemu.org/?p=qemu.git;a=commit;h=f019722cbbb45aea153294fc8921fcc96a4d3fa2
upstream_qemu: needs-triage
precise_qemu: DNE
precise/esm_qemu: DNE
trusty_qemu: released (2.0.0+dfsg-2ubuntu1.34)
trusty/esm_qemu: released (2.0.0+dfsg-2ubuntu1.34)
vivid/ubuntu-core_qemu: DNE
vivid/stable-phone-overlay_qemu: DNE
xenial_qemu: released (1:2.5+dfsg-5ubuntu10.14)
esm-infra/xenial_qemu: released (1:2.5+dfsg-5ubuntu10.14)
yakkety_qemu: released (1:2.6.1+dfsg-0ubuntu5.5)
zesty_qemu: released (1:2.8+dfsg-3ubuntu2.2)
artful_qemu: released (1:2.8+dfsg-3ubuntu3)
bionic_qemu: released (1:2.8+dfsg-3ubuntu3)
cosmic_qemu: released (1:2.8+dfsg-3ubuntu3)
disco_qemu: released (1:2.8+dfsg-3ubuntu3)
eoan_qemu: released (1:2.8+dfsg-3ubuntu3)
focal_qemu: released (1:2.8+dfsg-3ubuntu3)
groovy_qemu: released (1:2.8+dfsg-3ubuntu3)
hirsute_qemu: released (1:2.8+dfsg-3ubuntu3)
devel_qemu: released (1:2.8+dfsg-3ubuntu3)