From $URL: Quick emulator built with the IDE disk and CD/DVD-ROM Emulator support is vulnerable to a null pointer dereference issue. It could occur while flushing an empty CDROM device drive. A privileged user inside guest could use this flaw to crash the Qemu process resulting in DoS. Upstream patch: --------------- -> https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg01850.html 'CVE-2017-12809' assigned via ->... http://seclists.org/oss-sec/2017/q3/332
@Maintainer(s): Please follow procedure to close this report. Thank you. Daj'Uan (mbailey_j) Gentoo Security Scout
Source:https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg01841.html Patch 1/4 https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg01850.html Patch 2/4 https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg01580.html Patch 3/4 https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg01581.html Patch 4/4 https://lists.gnu.org/archive/html/qemu-devel/2017-08/msg01582.html @maintainter(s), if possible please test, then follow procedure to stabilize and close on report. Thank you! Daj'Uan (mbailey_j) Gentoo Security Scout
Patches 1 and 2 are applied upstream in version 2.10.0 Patches 3 and 4 are rejected upstream and a related fix is in progress. I believe the immediate problem with CVE-2017-12809 is resolved by patches 1 + 2.
