CVE-2017-8284

Priority
Description
** DISPUTED ** The disas_insn function in target/i386/translate.c in QEMU
before 2.9.0, when TCG mode without hardware acceleration is used, does not
limit the instruction size, which allows local users to gain privileges by
creating a modified basic block that injects code into a setuid program, as
demonstrated by procmail. NOTE: the vendor has stated "this bug does not
violate any security guarantees QEMU makes."
Notes
mdeslaurupstream disputed this has a security impact. Ignoring.
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):ignored
Ubuntu 16.04 LTS (Xenial Xerus):ignored
Patches:
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=30663fd26c0307e414622c7a8607fbc04f92ec14
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):ignored
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
More Information

Updated: 2020-01-29 20:00:02 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)