Control: tag -1 confirmed upstream Control: found -1 1.1.2+dfsg-1 Control: severity -1 important
28.02.2013 07:26, branen salmon wrote: > Package: qemu-system-x86 > Version: 1.4.0+dfsg-1exp > Severity: normal > > Dear Maintainer, > > When using qemu's "-virtfs" option with "security_model=mapped-file" or > "security_model=mapped_xattr", calling chmod() on a block or character > special file in the guest results in a host segfault. > > To reproduce: > > qemu-system-x86_64 \ > -virtfs local,path=tempdir,security_model=mapped-file,mount_tag=tag > > sudo mount -t 9p -o trans=virtio tag /mnt > sudo mknod /mnt/test b 7 0 > sudo chmod 0660 /mnt/test > > I've reproduced this issue with hosts qemu-system-x86=1.4.0+dfsg-1exp and > qemu-kvm=1.1.2+dfsg-5 and guest linux-image-3.2.0-4-amd64=3.2.35-2. Wow. Thank you very much for an excellent bugreport. Only relevant details, and easy to reproduce. Hopefully it will be easy to fix too. I'm upping severity to important since it is a very easy way to crash your guest at least, and - until we figure out what's going on - may even be exploitable. Also, I'm marking it as found in version 1.1 (wheezy) even if qemu in wheezy does not have virtfs enabled -- the same issue exists in wheezy qemu-kvm of that version. I'll dig further hopefully today. Thank you! /mjt -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
