Recent content by TheMrg

  1. T

    CVE-2026-43499 Ghostlock

    Is escape from unprivileged LXC container is possible? If yes, may mitigate with seccomp?
  2. T

    [SOLVED] Are there mitigations available for CVE-2026-53359 'Januscape'

    we have the same question. if we have no VM with CPU type "host", a root user on the VM can not escape?
  3. T

    Subject: PSA-2026-00021-1: "ssh-keysign-pwn" file disclosure via setuid binaries CVE-2026-46333

    Aus einen non privileged LXC Container sollte doch diese Lücke nicht ausnutzbar sein, um die Keys oder shadow des Hosts zu lesen. Oder ist es dennoch möglich? Danke.
  4. T

    CVE-2024-41090 / CVE-2024-41091 kernel: virtio-net: tun: mlx5_core short frame denial of service

    Thanks. We hope mlx5 is the only one. because we have one Proxmox VE we can not reboot yet.
  5. T

    CVE-2024-41090 / CVE-2024-41091 kernel: virtio-net: tun: mlx5_core short frame denial of service

    is proxmox is affacted? we have KVM VMs on it. many thanks
  6. T

    cve-2024-4467

    Sehen wir auch so. Der user hat ja keine möglichkeit eine qcow2 zu laden (zb als disk) in seine VM um so auf dem Host Daten lesen/schreiben zu können über die Lücke Danke soweit.
  7. T

    cve-2024-4467

    ist proxmox betroffen? https://access.redhat.com/security/cve/cve-2024-4467 welche auswirkungen hat dies? kann dies AUS einem Container (LXC) oder einer VM heraus genutzt werden? oder von einem User per GUI (user hat nur PVEVMUser permissions)? danke.
  8. T

    OOM killer during ZFS scrub

    many thanks. 50% is a lot. we have other proxmox nodes with 80% memory consumtion, without problems.
  9. T

    OOM killer during ZFS scrub

    we have the same issue on 3 proxmox nodes. all 3 nodes have high RAM consumtion (95% or more). suddenly on each of 3 nodes the VM with most memory was killed due OOM whenever it happens it is time 00:25 Is there a ZFS scrub or so? this happens nearly every month and only on high RAM usage...
  10. T

    CVE-2023-40360 qemu-kvm security

    Thanks. No we only use Proxmox GUI to set VMs.
  11. T

    CVE-2023-40360 qemu-kvm security

    Is the CVE-2023-40360 a problem to Proxmox? Proxmox using KVM for virtual machines. Many thanks.
  12. T

    AMD Incpetion fixes cause QEMU/KVM memory leak

    we are unclear about inception. we use zen2 AMD cpu. are we safe? https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7005.html is unclear and "These architectures do not require a microcode update since the IBPB feature introduced in 2018 to mitigate Spectre v2 already works fine...
  13. T

    [URGENT] Intel downfall / AMD Inception kernel security updates & microcode

    today new microcode was published for buster. now we are on 0xfa and happy
  14. T

    [SOLVED] PVE 7.3 with CVE-2022-35508

    Thanks, yes we are on 3.2-5 all 3 fixes?