[PVE-User] Venom exploit?
Alexandre DERUMIER
aderumier at odiso.com
Fri May 15 09:41:20 CEST 2015
>>Does this bug affects Proxmox ?
yes, any qemu is affected.
>> As far as I'm aware, there's no option to add Floppy device to the VMs, not through the GUI at least.
It's not about floppy device, it's about floppy controller, which is embedded in virtual qemu motherboard (and can't be removed).
So that's why is affected any qemu version, floppy device or not.
----- Mail original -----
De: "Iosif Peterfi" <iosif.peterfi at gmail.com>
À: "proxmoxve" <pve-user at pve.proxmox.com>
Envoyé: Jeudi 14 Mai 2015 07:39:51
Objet: Re: [PVE-User] Venom exploit?
Does this bug affects Proxmox ? As far as I'm aware, there's no option to add Floppy device to the VMs, not through the GUI at least.
On Wed, May 13, 2015 at 11:35 PM, Laurent Dumont < admin at coldnorthadmin.com > wrote:
You have to love the names they come up for CVE's now. I guess marketing really works after all.
There seem to be a patch in the works for pve.
http://pve.proxmox.com/pipermail/pve-devel/2015-May/015123.html
On 5/13/2015 4:14 PM, Paul Gray wrote:
BQ_BEGIN
http://arstechnica.com/security/2015/05/extremely-serious-virtual-machine-bug-threatens-cloud-providers-everywhere/
Apologies if this has been touched upon elsewhere, but has this been
addressed?
-PG
_______________________________________________
pve-user mailing list
pve-user at pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-user
--
Laurent Dumont
coldnorthadmin.com
_______________________________________________
pve-user mailing list
pve-user at pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-user
BQ_END
_______________________________________________
pve-user mailing list
pve-user at pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-user
More information about the pve-user
mailing list