Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to crash the QEMU process resulting in DoS or potentially execute arbitrary code on the host with privileges of QEMU process on the host.
CVSS Information
N/A
Vulnerability Type
跨界内存写
Vulnerability Title
QEMU 安全漏洞
Vulnerability Description
QEMU(又名Quick Emulator)是法国程序员法布里斯-贝拉(Fabrice Bellard)所研发的一套模拟处理器软件。该软件具有速度快、跨平台等特点。 QEMU(基于Cirrus CLGD 54xx VGA emulator支持实现)中的hw/display/cirrus_vga.c文件存在远程代码执行漏洞。攻击者可利用该漏洞造成拒绝服务(QEMU进程崩溃)并可能以QEMU进程的权限执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A