Public bug reported:
In the hw/9pfs/9p-proxy.c file I can see the following which is changed
because of CVE-2017-7471 in the hw/9pfs/9p-local.c. I might be wrong but
I guess that should be changed as well.
if(dir_path){
v9fs_path_sprintf(target,"%s/%s",dir_path->data,name);
}
else{
v9fs_path_sprintf(target,"%s",name);
}
** Affects: qemu
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1736376
Title:
CVE-2017-7471 repeated?
Status in QEMU:
New
Bug description:
In the hw/9pfs/9p-proxy.c file I can see the following which is
changed because of CVE-2017-7471 in the hw/9pfs/9p-local.c. I might be
wrong but I guess that should be changed as well.
if(dir_path){
v9fs_path_sprintf(target,"%s/%s",dir_path->data,name);
}
else{
v9fs_path_sprintf(target,"%s",name);
}
To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1736376/+subscriptions
