Wilders Security Forums  

Go Back   Wilders Security Forums > Software, Hardware and General Services > all things UNIX
Reload this Page Host storage devices vulnerable with KVM Linux virtualisation
User Name
Password
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

 
 
Thread Tools Search this Thread
  #1  
Old December 30th, 2011, 02:54 PM
ronjor's Avatar
ronjor ronjor is offline
Global Moderator
  
Join Date: Jul 2003
Location: Texas
Posts: 46,212
Default Host storage devices vulnerable with KVM Linux virtualisation
Quote:
According to a kernel update advisory by Red Hat, root users in a guest system that is virtualised with KVM (Kernel-based Virtual Machine) can, in certain circumstances, gain read and write access to the Linux host's storage devices. The advisory says that the hole exists when a host makes available partitions or LVM volumes to the guest as "raw disks" via virtio. Privileged guest users can send SCSI requests to such volumes that the host will execute on the underlying storage device – which allows the guest system to access all areas of the device rather than just the permitted partitions or volumes.
http://www.h-online.com/security/new...n-1402022.html
 

Wilders Security Forums > Software, Hardware and General Services > all things UNIX « Previous Thread | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Settings
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -4. The time now is 11:14 AM.

Contact Us - SSL - Wilders Security - Archive - TOS/Privacy - Top

Powered by vBulletin® Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Copyright ©2002 - 2013, Wilders Security Forums