Hi Thomas, thanks for your answers!
Re MAC the rationale would be the following: indeed a vulnerability in the KVM kernel module is severe and MAC won't be any help. However historically most of the KVM/QEMU VM escapes exploited vulnerabilities in userspace QEMU. QEMU does most of the virtual...
Hi all,
AFAIK latest Proxmox VE includes fixes for all known QEMU escapes out there, however I am interested in mitigations that can be implemented to prevent an attacker who would find and exploit a new QEMU vulnerability to attack other guests, or the host.
In this youtube video, an QEMU...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.