VDB
CVE-2017-2633
CVE-2017-2633
PUBLISHED
An out-of-bounds memory access issue was found in Quick Emulator (QEMU) before 1.7.2 in the VNC display driver. This flaw could occur while refreshing the VNC display surface area in the 'vnc_refresh_server_surface'. A user inside a guest could use this flaw to crash the QEMU process.
EPSS 0.56% · 68.6th percentile
Risk Scores
EPSS Score
0.56%
68.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | qemu | 1.6.0+dfsg-2ubuntu3, 1.6.0+dfsg-2ubuntu4, * |
Timeline
- Feb 22, 2017 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2017-2633 third-party-advisory
- https://ubuntu.com/security/notices/USN-3261-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2017-2633 third-party-advisory