CVE-2022-0358
Description
A flaw was found in the QEMU virtio-fs shared file system daemon (virtiofsd) implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of the group. This could allow a malicious unprivileged user inside the guest to gain access to resources accessible to the root group, potentially escalating their privileges within the guest. A malicious local user in the host might also leverage this unexpected executable file created by the guest to escalate their privileges on the host system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
29- QEMU/virtio-fs shared file system daemondescription
- osv-coords27 versionspkg:rpm/almalinux/libiscsipkg:rpm/almalinux/libiscsi-develpkg:rpm/almalinux/libiscsi-utilspkg:rpm/almalinux/libvirt-dbuspkg:rpm/almalinux/netcfpkg:rpm/almalinux/netcf-develpkg:rpm/almalinux/netcf-libspkg:rpm/almalinux/qemu-guest-agentpkg:rpm/almalinux/qemu-imgpkg:rpm/almalinux/qemu-kvmpkg:rpm/almalinux/qemu-kvm-block-curlpkg:rpm/almalinux/qemu-kvm-block-glusterpkg:rpm/almalinux/qemu-kvm-block-iscsipkg:rpm/almalinux/qemu-kvm-block-rbdpkg:rpm/almalinux/qemu-kvm-block-sshpkg:rpm/almalinux/qemu-kvm-commonpkg:rpm/almalinux/qemu-kvm-corepkg:rpm/almalinux/sgabiospkg:rpm/almalinux/sgabios-binpkg:rpm/opensuse/qemu&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/qemu&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/qemu-linux-user&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/qemu-testsuite&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/qemu&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP3
< 1.18.0-8.module_el8.6.0+2880+7d9e3703+ 26 more
- (no CPE)range: < 1.18.0-8.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1.18.0-8.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1.18.0-8.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1.3.0-2.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 0.2.8-12.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 0.2.8-12.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 0.2.8-12.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 15:4.2.0-59.module_el8.5.0+2629+68d2f392.2
- (no CPE)range: < 1:0.20170427git-3.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 1:0.20170427git-3.module_el8.6.0+2880+7d9e3703
- (no CPE)range: < 5.2.0-150300.112.4
- (no CPE)range: < 6.2.0-41.1
- (no CPE)range: < 5.2.0-150300.112.3
- (no CPE)range: < 5.2.0-150300.112.7
- (no CPE)range: < 5.2.0-150300.112.4
- (no CPE)range: < 5.2.0-150300.112.4
- (no CPE)range: < 5.2.0-150300.112.4
- (no CPE)range: < 5.2.0-150300.112.4
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.