Launchpad CVE tracker

CVE 2016-7116

Directory traversal vulnerability in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to access host files outside the export path via a .. (dot dot) in an unspecified string.

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: https://security.gento...
MISC: https://lists.debian.o...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: https://lists.gnu.org/...
MISC: https://lists.gnu.org/...
MISC: http://git.qemu.org/?p...

Launchpad.net

CVE 2016-7116

Related bugs

References