Multiple heap-based buffer overflows in the cirrus_invalidate_region function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty," aka the "bitblt" heap overflow.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-05-02T17:00:00

Updated: 2024-08-07T12:50:35.128Z

Reserved: 2007-03-07T00:00:00

Link: CVE-2007-1320

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-05-02T17:19:00.000

Modified: 2024-11-21T00:28:01.330

Link: CVE-2007-1320

cve-icon Redhat

Severity : Important

Publid Date: 2007-04-20T00:00:00Z

Links: CVE-2007-1320 - Bugzilla