CVE-2014-8106 — Improper Input Validation in Qemu

CWE-20 — Improper Input Validation CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources

Severity

4.6MEDIUMNVD

OSV7.5OSV7.2

EPSS

0.3%

top 42.66%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qemu Debian Qemu

Timeline

PublishedDec 8

Latest updateMay 17

Description

Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages4 packages

▶debiandebian/qemu< qemu 2.1+dfsg-9 (bookworm)

▶Debianqemu/qemu< 2.1+dfsg-9+3

▶Ubuntuqemu/qemu< 2.0.0+dfsg-2ubuntu1.9

▶NVDqemu/qemu2.1.2+2

🔴Vulnerability Details

GHSA

GHSA-g3gg-2j77-h4r4: Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga↗2022-05-17

▶

OSV

qemu, qemu-kvm vulnerabilities↗2014-12-11

▶

OSV

CVE-2014-8106: Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga↗2014-12-08

▶

📋Vendor Advisories

Ubuntu

QEMU vulnerabilities↗2014-12-11

▶

Red Hat

qemu: cirrus: insufficient blit region checks↗2014-12-04

▶

Debian

CVE-2014-8106: qemu - Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) ...↗2014

▶

💬Community

Bugzilla

CVE-2014-8106 qemu: cirrus: insufficient blit region checks [fedora-all]↗2014-12-04

▶

Bugzilla

CVE-2014-8106 qemu: cirrus: insufficient blit region checks↗2014-12-01

▶

Bugzilla

CVE-2007-1320 xen/qemu Cirrus LGD-54XX "bitblt" Heap Overflow↗2007-04-20

▶