Quick Emulator(Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs) support, is vulnerable to a directory/path traversal issue. It could occur while creating or accessing files on a shared host directory.
A privileged user inside guest could use this flaw to access undue files on the host.
Name: Felix Wilhelm (ERNW)
*** Bug 1347350 has been marked as a duplicate of this bug. ***
Created xen tracking bugs for this issue:
Affects: fedora-all [bug 1371400]
Created qemu tracking bugs for this issue:
Affects: fedora-all [bug 1371399]