73 matches found
QEMU VirtFS Denial of Service Vulnerability (CNVD-2016-12581)
QEMU also known as Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast, cross-platform, etc. VirtFS is a customized virtualized file system for virtualized environments, belonging to the system layer virtualization...
QEMU VirtFS Denial of Service Vulnerability (CNVD-2016-12582)
QEMU also known as Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast, cross-platform, etc. VirtFS is a customized virtualized file system for virtualized environments, belonging to the system layer virtualization...
QEMU VirtFS Denial of Service Vulnerability
QEMU aka Quick Emulator is a set of simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. QEMU suffers from a denial of service vulnerability. An attacker exploiting this vulnerability could cause a QEMU instance to crash, resulting...
Debian DLA-698-1 : qemu security update
Several vulnerabilities were discovered in qemu, a fast processor emulator. The Common Vulnerabilities and Exposures project identifies the following problems : CVE-2016-7909 Quick EmulatorQemu built with the AMD PC-Net II emulator support is vulnerable to an infinite loop issue. It could occur...
Debian DLA-689-1 : qemu-kvm security update
Multiple vulnerabilities have been discovered in qemu-kvm, a full virtualization solution on x86 hardware based on Quick EmulatorQemu. The Common Vulnerabilities and Exposures project identifies the following problems : CVE-2016-7909 Quick EmulatorQemu built with the AMD PC-Net II emulator suppor...
[SECURITY] [DLA 689-1] qemu-kvm security update
Package : qemu-kvm Version : 1.1.2+dfsg-6+deb7u18 CVE ID : CVE-2016-7909 CVE-2016-8909 CVE-2016-8910 Debian Bug : 839834 841950 841955 842455 842463 Multiple vulnerabilities have been discovered in qemu-kvm, a full virtualization solution on x86 hardware based on Quick EmulatorQemu. The Common...
Debian DLA-619-1 : qemu-kvm security update
qemu-kvm built with the VirtFS, host directory sharing via Plan 9 File System 9pfs support, is vulnerable to a directory/path traversal issue. It could occur while creating or accessing files on a shared host directory. A privileged user inside guest could use this flaw to access undue files on t...
DLA-619-1 qemu-kvm - security update
Bulletin has no description...
DLA-618-1 qemu - security update
Bulletin has no description...
Gentoo QEMU Local Privilege Escalation
/ == virtfshell == Some distributions make virtfs-proxy-helper from QEMU either SUID or give it CAPCHOWN fs capabilities. This is a terrible idea. While virtfs-proxy-helper makes some sort of flimsy check to make sure its socket path doesn't already exist, it is vulnerable to TOCTOU. This should...
QEMU (Gentoo) - Local Privilege Escalation
QEMU Gentoo - Local Privilege Escalation / == virtfshell == Some distributions make virtfs-proxy-helper from QEMU either SUID or give it CAPCHOWN fs capabilities. This is a terrible idea. While virtfs-proxy-helper makes some sort of flimsy check to make sure its socket path doesn't already exist,...
Gentoo Local Privilege Escalation in QEMU Exploit
Some distributions make virtfs-proxy-helper from QEMU either SUID or give it CAPCHOWN fs capabilities. This is a terrible idea. While virtfs-proxy-helper makes some sort of flimsy check to make sure its socket path doesn't already exist, it is vulnerable to TOCTOU. This exploit should spawn a roo...
QEMU (Gentoo) - Local Privilege Escalation
/ == virtfshell == Some distributions make virtfs-proxy-helper from QEMU either SUID or give it CAPCHOWN fs capabilities. This is a terrible idea. While virtfs-proxy-helper makes some sort of flimsy check to make sure its socket path doesn't already exist, it is vulnerable to TOCTOU. This should...