CVE-2017-2620

Advisory lineage Upstream: 0 Downstream: 32

Downstream

ALPINE-CVE-2017-2620 DEBIAN-CVE-2017-2620 DLA-1270-1 DLA-1497-1 DLA-842-1 DLA-845-1

Modified

Published: 27 Jul 2018, 19:00

Last modified:05 Aug 2024, 14:02

Vulnerability Summary

Overall Risk (default)

high

70/100

CVSS Score

9.9 CRITICAL

v3.0 (nvd)

EPSS Score

2.41% LOW

2% probability -0.13%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Jul 2018, 19:00

Published

Vulnerability first disclosed

05 Aug 2024, 14:02

Last Modified

Vulnerability information updated

Description

Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute arbitrary code on host with privileges of the QEMU process.

CVSS Metrics

v3.0•MEDIUM•Score: 5.5CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L
v3.0•CRITICAL•Score: 9.9CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
v2.0•HIGH•Score: 9AV:N/AC:L/Au:S/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 2.41%• Percentile: 85%

Techniques & Countermeasures

CWE-125•Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
CWE-787•Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

Affected Systems

citrix•xenserver
6.0.2 | 6.2.0:sp1 | 6.5:sp1 | 7.0 | 7.1
debian•debian_linux
7.0
qemu•qemu
< 2.8.0
qemu•qemu:
2.8
redhat•enterprise_linux_desktop
6.0 | 7.0
redhat•enterprise_linux_server
6.0 | 7.0
redhat•enterprise_linux_server_aus
7.3 | 7.4
redhat•enterprise_linux_server_eus
7.3 | 7.4 | 7.5
redhat•enterprise_linux_workstation
6.0 | 7.0
redhat•openstack
5.0 | 6.0 | 7.0 | 8 | 9 | 10
xen•xen
≤ 4.7.1 | 4.7.1:r1 | 4.7.1:r2 | 4.7.1:r3 | 4.7.1:r4 | 4.7.1:r5 | 4.7.1:r6 | 4.7.1:r7