CVE Request Qemu: vmware_vga: OOB stack memory access when processing svga command

[P J P <ppandit () redhat com>]

  Hello,

Quick Emulator(Qemu) built with the VMware-SVGA "chipset" emulation support is 
vulnerable to an OOB stack memory write issue. It could occur while processing 
VGA commands in 'vmsvga_fifo_run' routine.

A privileged user inside guest could use this flaw to crash the Qemu process 
resulting in DoS.

Upstream fix:
-------------
  -> https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg01764.html

This issue was independently reported by Qinghao Tang and Li Qiang of 360.cn 
Inc.

Thank you.
--
Prasad J Pandit / Red Hat Product Security Team
47AF CE69 3A90 54AA 9045 1053 DD13 3D32 FE5B 041F