Public Date:
1553402: CVE-2018-7858 QEMU: cirrus: OOB access when updating VGA display

The MITRE CVE dictionary describes this issue as:

Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds access and QEMU process crash) by leveraging incorrect region calculation when updating VGA display.

Find out more about CVE-2018-7858 from the MITRE CVE dictionary dictionary and NIST NVD.

CVSS v2 metrics

Base Score 4.9
Base Metrics AV:A/AC:M/Au:S/C:P/I:P/A:P
Access Vector Adjacent Network
Access Complexity Medium
Authentication Single
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial

CVSS v3 metrics

CVSS3 Base Score 5.5
CVSS3 Base Metrics CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L
Attack Vector Adjacent Network
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Changed
Confidentiality Low
Integrity Impact Low
Availability Impact Low

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform Errata Release Date
Red Hat OpenStack Platform 8.0 (Liberty) (qemu-kvm-rhev) RHSA-2018:1646 2018-05-22
Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts (qemu-kvm-rhev) RHSA-2018:1369 2018-05-10
Red Hat OpenStack Platform 12.0 (qemu-kvm-rhev) RHSA-2018:1643 2018-05-22
Red Hat Enterprise Linux 7 (qemu-kvm) RHSA-2018:1416 2018-05-14
Red Hat Enterprise Linux 6 (qemu-kvm) RHSA-2018:2162 2018-07-10
Red Hat OpenStack Platform 10 (qemu-kvm-rhev) RHSA-2018:1644 2018-05-22
Red Hat OpenStack Platform 9.0 (qemu-kvm-rhev) RHSA-2018:1645 2018-05-22

Affected Packages State

Platform Package State
Red Hat OpenStack Platform 11.0 (Ocata) qemu-kvm-rhev Will not fix
Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 qemu-kvm-rhev Will not fix
Red Hat Enterprise Linux 7 qemu-kvm-ma Affected
Red Hat Enterprise Linux 5 xen Will not fix
Red Hat Enterprise Linux 5 kvm Will not fix


Red Hat would like to thank Ross Lagerwall ( for reporting this issue.

Last Modified

CVE description copyright © 2017, The MITRE Corporation


Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.