CVE-2020-7211

tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows.

packagechannelchannel versionpkg versionstatus
qemu
nixos-unstable
2020-02-09 19:20:46 UTC (8130f3)4.2.0vulnerable
2020-01-31 22:35:47 UTC (a21c2f)4.2.0vulnerable
2020-01-31 03:40:27 UTC (8539d5)4.2.0vulnerable
2020-01-27 15:15:42 UTC (e59dcf)4.2.0vulnerable
2020-01-26 13:55:23 UTC (73a59a)4.2.0vulnerable
2020-01-26 02:00:18 UTC (8a9807)4.2.0vulnerable
2020-01-24 12:40:44 UTC (05626c)4.2.0vulnerable
2020-01-23 12:40:25 UTC (d1ba7d)4.2.0vulnerable
2020-01-22 11:20:35 UTC (90441b)4.2.0vulnerable
2020-01-22 02:25:38 UTC (f37db1)4.2.0vulnerable
2020-01-21 07:35:39 UTC (a65f33)4.2.0vulnerable
2020-01-20 03:15:32 UTC (bea1a2)4.2.0vulnerable
2020-01-18 10:35:34 UTC (c438ce)4.2.0vulnerable
2020-01-17 08:15:31 UTC (2628f2)4.2.0vulnerable
2020-01-16 20:30:28 UTC (d5e9b7)4.2.0vulnerable
2020-01-15 07:35:45 UTC (7184df)4.2.0vulnerable
2020-01-12 17:10:37 UTC (100012)4.2.0vulnerable
2020-01-12 04:35:18 UTC (aa561c)4.2.0vulnerable
2020-01-11 08:25:20 UTC (e41347)4.2.0vulnerable
2020-01-09 02:55:25 UTC (e1eedf)4.2.0vulnerable
2020-01-07 08:20:27 UTC (9beb0d)4.2.0vulnerable
2020-01-05 23:45:32 UTC (2e8fc9)4.2.0vulnerable
2020-01-04 10:30:42 UTC (e0470e)4.2.0vulnerable