A flaw was found in the 9p passthrough filesystem (9pfs) implementation in QEMU. When a local user in the guest writes an executable file with SUID or SGID, none of these privileged bits are correctly dropped. As a result, in rare circumstances, this flaw could be used by malicious users in the guest to elevate their privileges within the guest and help a host local user to elevate privileges on the host.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2023-07-24T15:19:25.843Z
Updated: 2024-08-02T05:49:11.113Z
Reserved: 2023-03-14T10:31:59.556Z
Link: CVE-2023-1386
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-07-24T16:15:11.150
Modified: 2024-04-17T18:15:15.650
Link: CVE-2023-1386
Redhat