Quick Emulator(Qemu) built with the VMware-SVGA "chipset" emulation support is vulnerable to an OOB stack memory write issue. It could occur while processing VGA commands in 'vmsvga_fifo_run' routine. A privileged user inside guest could use this flaw to crash the Qemu process resulting in DoS. Upstream fix: ------------- -> git.qemu.org/?p=qemu.git;a=commit;h=167d97a3def77ee2dbf6e908b0ecbfe2103977db Reference: ---------- -> http://www.openwall.com/lists/oss-security/2016/09/09/7
Acknowledgments: Name: Qinghao Tang, Li Qiang (360.cn Inc.)
Created qemu tracking bugs for this issue: Affects: fedora-all [bug 1374709]
*** Bug 1329193 has been marked as a duplicate of this bug. ***