1
PublicDateAtUSN: 2017-10-16
2
Candidate: CVE-2017-15289
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289
6
https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html
7
https://usn.ubuntu.com/usn/usn-3575-1
9
The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow
10
local OS guest privileged users to cause a denial of service (out-of-bounds
11
write access and Qemu process crash) via vectors related to dst
16
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880832
18
Discovered-by: Guoxiang Niu
22
upstream_qemu-kvm: needs-triage
23
precise/esm_qemu-kvm: needed
25
vivid/ubuntu-core_qemu-kvm: DNE
33
upstream: https://git.qemu.org/gitweb.cgi?p=qemu.git;a=commit;h=eb38e1bc3740725ca29a535351de94107ec58d51
34
upstream_qemu: needs-triage
36
trusty_qemu: released (2.0.0+dfsg-2ubuntu1.39)
37
vivid/ubuntu-core_qemu: DNE
38
xenial_qemu: released (1:2.5+dfsg-5ubuntu10.22)
39
zesty_qemu: ignored (reached end-of-life)
40
artful_qemu: released (1:2.10+dfsg-0ubuntu3.5)
41
bionic_qemu: not-affected (1:2.11+dfsg-1ubuntu1)
42
devel_qemu: not-affected (1:2.11+dfsg-1ubuntu1)