Описание
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1:2.11+dfsg-1ubuntu7.35 |
| devel | released | 1:5.2+dfsg-6ubuntu2 |
| esm-infra-legacy/trusty | needed | |
| esm-infra/bionic | released | 1:2.11+dfsg-1ubuntu7.35 |
| esm-infra/focal | released | 1:4.2-3ubuntu6.12 |
| esm-infra/xenial | released | 1:2.5+dfsg-5ubuntu10.49 |
| focal | released | 1:4.2-3ubuntu6.12 |
| groovy | released | 1:5.0-5ubuntu9.4 |
| hirsute | released | 1:5.2+dfsg-6ubuntu2 |
| impish | released | 1:5.2+dfsg-6ubuntu2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE | |
| impish | DNE | |
| jammy | DNE | |
| kinetic | DNE |
Показывать по
6.9 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality integrity as well as system availability.
A race condition flaw was found in the 9pfs server implementation of Q ...
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity as well as system availability.
6.9 Medium
CVSS2
7.5 High
CVSS3