Oval Definition:	oval:org.mitre.oval:def:10315
Revision Date: 2013-04-29 Version: 12 Title: Multiple heap-based buffer overflows in the cirrus_invalidate_region function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty," aka the "bitblt" heap overflow. Description: Multiple heap-based buffer overflows in the cirrus_invalidate_region function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty," aka the "bitblt" heap overflow. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2007-1320 Platform(s): CentOS Linux 5 Oracle Linux 5 Red Hat Enterprise Linux 5 Product(s): Definition Synopsis RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x OR Oracle Linux 5.x AND Configuration section xen-libs is earlier than 0:3.0.3-25.0.4.el5 OR xen is earlier than 0:3.0.3-25.0.4.el5 OR xen-devel is earlier than 0:3.0.3-25.0.4.el5
BACK