Showing 1 - 4 of 4

CVE-2020-35517

Status Candidate

Overview

A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices.

Related Files

Gentoo Linux Security Advisory 202208-27: Posted Aug 15, 2022; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202208-27 - Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape). Versions less than 7.0.0 are affected.; tags | advisory, remote, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2020-15859, CVE-2020-15863, CVE-2020-16092, CVE-2020-35504, CVE-2020-35505, CVE-2020-35506, CVE-2020-35517, CVE-2021-20203, CVE-2021-20257, CVE-2021-20263, CVE-2021-3409, CVE-2021-3416, CVE-2021-3527, CVE-2021-3544; SHA-256 | ad311203dff6a2553339d7456d04215ce76124a29b19165d124b263667c89b9c; Download | Favorite | View

Ubuntu Security Notice USN-5010-1: Posted Jul 15, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5010-1 - Lei Sun discovered that QEMU incorrectly handled certain MMIO operations. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. Wenxiang Qian discovered that QEMU incorrectly handled certain ATAPI commands. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 21.04. Various other issues were also addressed.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2020-15469, CVE-2020-29443, CVE-2020-35505, CVE-2020-35517, CVE-2021-20221, CVE-2021-20257, CVE-2021-3392, CVE-2021-3409, CVE-2021-3416, CVE-2021-3527, CVE-2021-3544, CVE-2021-3545, CVE-2021-3546, CVE-2021-3593, CVE-2021-3594, CVE-2021-3595, CVE-2021-3608; SHA-256 | c4d63dc41ceb7caa0f49a3eacc4d8caaa17252efd4913df4a83ba610c5446f40; Download | Favorite | View

Red Hat Security Advisory 2021-0743-01: Posted Mar 8, 2021; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2021-0743-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-35517; SHA-256 | c0895bd122810f3e0483f5fa2672b0b4281d953314d74fe5dcece8867c53a06b; Download | Favorite | View

Red Hat Security Advisory 2021-0711-01: Posted Mar 3, 2021; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2021-0711-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.; tags | advisory, kernel; systems | linux, redhat; advisories | CVE-2020-35517; SHA-256 | 916c8a8e1e3b1f4d85e7e892d0a7fe4b724f6a1289160f092498a1a68cb3c32b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 108 files
Ubuntu 66 files
Gentoo 27 files
CraCkEr 23 files
Google Security Research 21 files
malvuln 15 files
Chokri Hammedi 13 files
th3d1gger 9 files
James Forshaw 9 files
Yousef Alraddadi 8 files

File Archives

Systems

AIX (426)
Apple (1,899)
BSD (369)
CentOS (55)
Cisco (1,915)
Debian (5,948)
Fedora (1,690)
FreeBSD (1,242)
Gentoo (4,219)
HPUX (878)
iOS (323)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (42,959)
Mac OS X (684)
Mandriva (3,105)
NetBSD (255)
OpenBSD (479)
RedHat (12,018)
Slackware (941)
Solaris (1,607)
SUSE (1,444)
Ubuntu (8,039)
UNIX (9,121)
UnixWare (185)
Windows (6,476)
Other

CVE-2020-35517

Overview

Related Files

File Archive:

October 2022

Top Authors In Last 30 Days

File Tags

File Archives

Systems