NuytsTech Security

CVE-2017-15038

by ·

Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS users to obtain sensitive information from host heap memory via vectors related to reading extended attributes.

Date published : 2017-10-09

https://www.debian.org/security/2018/dsa-4213

https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html

Tags: