[pve-devel] Running KVM as root is a security issue

Gilou contact+dev at gilouweb.com
Mon Jul 27 18:17:46 CEST 2015


Le 27/07/2015 15:29, Eric Blevins a écrit :
> I have no idea if CVE-2015-5154 that Stephan inquired about affests Proxmox.
> 
> But when I see exploits like that the first thought in my mind is how
> easy it would be for such an exploit to get root on the Proxmox host.
> 
> I've done some experimenting. If I take the KVM command as generated
> by Proxmox and simply add "-runas nobody" the VM starts up and runs
> without a problem.
> 
> However when I try to open a console the KVM process fails.
> I suspect this is just some permissions in creating the socket but not
> investidated.
> 
> A patch exists to prevent a crash when a socket cannot be opened.
> https://lists.gnu.org/archive/html/qemu-devel/2015-05/msg00577.html
> 
> Any chance this security issue can be fixed before the 4.0 release?
> 
> Eric

Hi,

Maybe it could even go further, allowing to separate some VMs using
different usernames to isolate them somehow?

Cheers
Gilles



More information about the pve-devel mailing list