Summary: | <app-emulation/qemu-2.9.0-r2: improper access control issue in VirtFS | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michael Boyle <boylemic> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | qemu+disabled |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2017/05/17/6 https://bugzilla.redhat.com/show_bug.cgi?id=1451709 | ||
Whiteboard: | B2 [glsa cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 616874 | ||
Bug Blocks: |
Description
Michael Boyle
2017-05-18 02:21:37 UTC
Fixed in >=app-emulation/qemu-2.9.0-r2. Vulnerable version left in tree app-emulation/qemu-2.8.1-r2 commit 33cfc7b69e6a25e0b66687e28f7b29ae1a43e2d4 Author: Matthias Maier <tamiko@gentoo.org> Date: Wed May 17 23:08:31 2017 -0500 app-emulation/qemu: patch for CVE-2017-7493, bug #618808 Package-Manager: Portage-2.3.5, Repoman-2.3.2 Added to an existing GLSA Request. This issue was resolved and addressed in GLSA 201706-03 at https://security.gentoo.org/glsa/201706-03 by GLSA coordinator Yury German (BlueKnight). |