On Tue, Apr 08, 2014 at 10:11:32AM -0400, James B. Byrne wrote: > Is it possible to use this exploit against a kvm guest to read memory used by > the host? In other words: if an exploitable service, say httpd with mod_ssl, > is running in guest system 'vm1' hosted on system 'virthost' then what > implications does that have with respect to guests vm2 and vm3 and to virthost > itself? As I understand it, no. In fact, the memory read doesn't even cross normal *memory protections within* the VM -- this is not a kernel exploit. -- Matthew Miller mattdm@xxxxxxxxxx <http://mattdm.org/> _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: OpenSSL Heartbeat exploit agains KVM guest systems
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: OpenSSL Heartbeat exploit agains KVM guest systems
- From: Matthew Miller <mattdm@xxxxxxxxxx>
- Date: Tue, 8 Apr 2014 10:39:46 -0400
- Cc: centos-virt@xxxxxxxxxx
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <543f3b2565c0e8905498b9d841619251.squirrel@webmail.harte-lyne.ca>
- User-agent: Mutt/1.5.20 (2009-12-10)
- References:
- OpenSSL Heartbeat exploit agains KVM guest systems
- From: James B. Byrne
- OpenSSL Heartbeat exploit agains KVM guest systems
- Prev by Date: OpenSSL Heartbeat exploit agains KVM guest systems
- Next by Date: Re: CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- Previous by thread: OpenSSL Heartbeat exploit agains KVM guest systems
- Next by thread: How to save a Gnome screen layout on CentOS 6.5 after logging off?
- Index(es):
 |