Dear clients and customers ,

Today on 15.05.2015 servers will get on a urgent maintence due a critical security issue , this message consider only for the KVM users. For more information regarding the vulnerability please read below :

Impact:

A vulnerability in the floppy disk driver of qemu, Xen, and KVM allows attackers with root privileges to escape from a virtual machine (guest) and access the host system.
The bug is not easy to exploit and might trigger crashes of the host system, that could be an indicator for an ongoing attack.

All currently supported versions of SUSE Linux Enterprise Server starting from SLES 10 SP3 up to and including SLE 12 are affected by
this vulnerability. Since the problematic code is in qemu, all versions of Xen, qemu and KVM are affected.



Following the update, the guests (virtual machines) need to be powered off and started up again for the update to take effect.


Thank you ,
Yours UndergroundPrivate.com

Friday, May 15, 2015

« Back