CVE-2017-7980 log

Severity High
Remote No
Type Arbitrary code execution
Quick emulator(Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds r/w access issue. It could occur while copying VGA data via various bitblt functions. A privileged user inside guest could use this flaw to crash the Qemu process resulting in DoS OR potentially execute arbitrary code on a host with privileges of Qemu process on the host.
Group Package Affected Fixed Severity Status Ticket
AVG-938 qemu 2.8.0-1 2.8.1-1 High Fixed
Upstream Patches:;a=commitdiff;h=026aeffcb4752054830ba203020ed6eb05bcaba8;a=commitdiff;h=ffaf857778286ca54e3804432a2369a279e73aa7