What is the severity of CVE-2017-7718?

CVE-2017-7718 has a severity rating that can lead to denial of service due to out-of-bounds read vulnerabilities.

How can I fix CVE-2017-7718?

To address CVE-2017-7718, upgrade QEMU to a version higher than 2.8.1.1 or apply the relevant patch.

Which versions of QEMU are affected by CVE-2017-7718?

CVE-2017-7718 affects QEMU versions up to and including 2.8.1.1 and the specific version 2.9.0-rc0.

What type of vulnerability is CVE-2017-7718?

CVE-2017-7718 is classified as a denial of service vulnerability due to improper handling of VGA data.

Who can be impacted by CVE-2017-7718?

Local guest OS privileged users may exploit CVE-2017-7718 to cause a crash in the QEMU process.

Vulnerability/
CVE-2017-7718

medium

5.5

CWE

125

19/4/2017

20/4/2017

5/8/2024

CVE-2017-7718

First published: Wed Apr 19 2017(Updated: )

hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functions.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
QEMU KVM	<=2.8.1.1
QEMU KVM	=2.9.0-rc0
Debian Debian Linux	=8.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-7718?
CVE-2017-7718 has a severity rating that can lead to denial of service due to out-of-bounds read vulnerabilities.
How can I fix CVE-2017-7718?
To address CVE-2017-7718, upgrade QEMU to a version higher than 2.8.1.1 or apply the relevant patch.
Which versions of QEMU are affected by CVE-2017-7718?
CVE-2017-7718 affects QEMU versions up to and including 2.8.1.1 and the specific version 2.9.0-rc0.
What type of vulnerability is CVE-2017-7718?
CVE-2017-7718 is classified as a denial of service vulnerability due to improper handling of VGA data.
Who can be impacted by CVE-2017-7718?
Local guest OS privileged users may exploit CVE-2017-7718 to cause a crash in the QEMU process.

agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2017-7718
agent/type
agent/severity
agent/weakness
agent/remedy
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/event
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
agent/source
vendor/qemu
canonical/qemu kvm
version/qemu kvm/2.8.1.1
version/qemu kvm/2.9.0-rc0
vendor/debian
canonical/debian debian linux
version/debian debian linux/8.0

Frequently Asked Questions

What is the severity of CVE-2017-7718?
CVE-2017-7718 has a severity rating that can lead to denial of service due to out-of-bounds read vulnerabilities.
How can I fix CVE-2017-7718?
To address CVE-2017-7718, upgrade QEMU to a version higher than 2.8.1.1 or apply the relevant patch.
Which versions of QEMU are affected by CVE-2017-7718?
CVE-2017-7718 affects QEMU versions up to and including 2.8.1.1 and the specific version 2.9.0-rc0.
What type of vulnerability is CVE-2017-7718?
CVE-2017-7718 is classified as a denial of service vulnerability due to improper handling of VGA data.
Who can be impacted by CVE-2017-7718?
Local guest OS privileged users may exploit CVE-2017-7718 to cause a crash in the QEMU process.

CVE-2017-7718

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-7718?

How can I fix CVE-2017-7718?

Which versions of QEMU are affected by CVE-2017-7718?

What type of vulnerability is CVE-2017-7718?

Who can be impacted by CVE-2017-7718?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2017-7718?

How can I fix CVE-2017-7718?

Which versions of QEMU are affected by CVE-2017-7718?

What type of vulnerability is CVE-2017-7718?

Who can be impacted by CVE-2017-7718?