A flaw was found in QEMU. The new '-o xattrmap' option in virtiofsd sometimes causes the 'security.capability' xattr in the guest to not drop on write, potentially leading to a modified, privileged executable. The highest threat from this vulnerability is to integrity.
A flaw was found in QEMU. The new '-o xattrmap' option in virtiofsd sometimes causes the 'security.capability' xattr in the guest to not drop on write, potentially leading to a modified, privileged executable. The highest threat from this vulnerability is to integrity.