Wind River Support Network

HomeDefectsLIN7-9936
Fixed

LIN7-9936 : Security Advisory - qemu - CVE-2017-7493

Created: Jun 29, 2018    Updated: Oct 26, 2018
Resolved Date: Aug 14, 2018
Found In Version: 7.0.0.28
Fix Version: 7.0.0.29
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing virtfs metadata files in mapped-file security mode. A guest user could use this flaw to escalate their privileges inside guest.

https://nvd.nist.gov/vuln/detail/CVE-2017-7493

Other Downloads


CVEs


Live chat
Online