qemu is vulnerable to privilege escalation. The vulnerability exists through the virtio-fs
shared file system daemon (virtiofsd) of QEMU where the new xattrmap
option may cause the security.capability
xattr in the guest to not drop on file write.