On Tue, 30 Aug 2016 15:39:13 -0400
Peter Maydell wrote:
> On 30 August 2016 at 14:29, Peter Maydell wrote:
> > On 30 August 2016 at 18:10, Greg Kurz wrote:
> >> As reported by Felix Wilhelm, at various places in 9pfs, full paths are
> >> created by concatenating a guest originated string to t
On 30 August 2016 at 14:29, Peter Maydell wrote:
> On 30 August 2016 at 18:10, Greg Kurz wrote:
>> As reported by Felix Wilhelm, at various places in 9pfs, full paths are
>> created by concatenating a guest originated string to the export path. A
>> malicious guest could forge a relative path and
On 30 August 2016 at 18:10, Greg Kurz wrote:
> As reported by Felix Wilhelm, at various places in 9pfs, full paths are
> created by concatenating a guest originated string to the export path. A
> malicious guest could forge a relative path and access files outside the
> export path.
>
> A tentativ
On Tue, Aug 30, 2016 at 07:10:47PM +0200, Greg Kurz wrote:
> As reported by Felix Wilhelm, at various places in 9pfs, full paths are
> created by concatenating a guest originated string to the export path. A
> malicious guest could forge a relative path and access files outside the
> export path.
>
As reported by Felix Wilhelm, at various places in 9pfs, full paths are
created by concatenating a guest originated string to the export path. A
malicious guest could forge a relative path and access files outside the
export path.
A tentative fix was sent recently by Prasad J Pandit, but it was on
