Security Advisory

CVE-2012-2652

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-07 20:00:00

Last updated 2024-08-06 19:42:31

Assigner redhat

State PUBLISHED

Description

The bdrv_open function in Qemu 1.0 does not properly handle the failure of the mkstemp function, when in snapshot node, which allows local users to overwrite or read arbitrary files via a symlink attack on an unspecified temporary file.

← Browse all CVEs View on cve.org ↗