Wind River Support Network

HomeDefectsLIN8-7243

Fixed

LIN8-7243 : Security Advisory - qemu - CVE-2017-7980

Created: Jul 27, 2017 Updated: Dec 3, 2018

Resolved Date: Sep 8, 2017

Found In Version: 8.0.0.19

Fix Version: 8.0.0.22

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

Heap-based buffer overflow in Cirrus CLGD 54xx VGA Emulator in Quick Emulator (Qemu) 2.8 and earlier allows local guest OS users to execute arbitrary code or cause a denial of service (crash) via vectors related to a VNC client updating its display after a VGA operation.

https://nvd.nist.gov/vuln/detail/CVE-2017-7980

Other Downloads

Wind River Linux 8.0.0.22
Wind River Linux 8.0.0.23
Wind River Linux 8.0.0.24
Wind River Linux 8.0.0.25
Wind River Linux 8.0.0.26
Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-7980