CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
EPSS
Percentile
28.7%
Qemu 0.9.1 and earlier does not perform range checks for block device read
or write requests, which allows guest host users with root privileges to
access arbitrary memory and escape the virtual machine.
Author | Note |
---|---|
kees | note that the original patch corrupts growable devices, see RH bug |
jdstrand | there is now an updated patch in the RH bug 434978 Debian claims that patches break existing images |