Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2011-2527
Description:The change_process_uid function in os-posix.c in Qemu 0.14.0 and earlier does not properly drop group privileges when the -runas option is used, which allows local guest users to access restricted files on the host.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-2527
BugTraq ID: 48659
Debian Security Information: DSA-2282 (Google Search)
RedHat Security Advisories: RHSA-2011:1531
SuSE Security Announcement: openSUSE-SU-2012:0207 (Google Search)
XForce ISS Database: qemu-runas-priv-escalation(68539)

© 1998-2021 E-Soft Inc. All rights reserved.