CVE-2017-13672 (qemu)
QEMU (aka Quick Emulator), when built with the VGA display emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors involving display update.
Source: CVE-2017-13672 (qemu)