On Monday, June 26, 2023 1:49:06 PM CEST Christian Schoenebeck wrote: > As recent CVE-2023-2861 (fixed by f6b0de53fb) once again showed, the 9p > 'proxy' fs driver is in bad shape. Using the 'proxy' backend was already > discouraged for safety reasons before and we recommended to use the > 'local' backend (preferably in conjunction with its 'mapped' security > model) instead, but now it is time to officially deprecate the 'proxy' > backend. > > Signed-off-by: Christian Schoenebeck <qemu_...@crudebyte.com> > Reviewed-by: Greg Kurz <gr...@kaod.org> > --- > v4 -> v5: > - Eliminate repititve use of word 'instead' in text. > - Commit log: mention exact commit which fixed CVE-2023-2861.
Queued on 9p.next: https://github.com/cschoenebeck/qemu/commits/9p.next Thanks! Best regards, Christian Schoenebeck
