[Pkg-libvirt-maintainers] Bug#764894: Bug#764894: virt-manager: USB devices are generally redirected to VMs
Guido Günther
agx at sigxcpu.org
Sun Oct 12 12:46:28 UTC 2014
severity 764894 important
thanks
On Sun, Oct 12, 2014 at 12:42:45AM +0200, Christoph Anton Mitterer wrote:
> Package: virt-manager
> Version: 1:1.0.1-2.1
> Severity: critical
> Tags: security
> Justification: root security hole
>
>
> Hi.
>
> Not sure whether the problem here is actually in virt-manager, libvirt
> or spice-client-glib-usb-acl-helper.
> So pleace redirect as necessary.
>
>
> I've just noted a very serious behaviour (which is also why I marked
> it as critical and root security hole):
>
> It seems that when plugging an USB device into ay computer where
> I run virtmanager and where I'm connected to some VMs via SPICE,
> that such USB devices are forwarded to that VM. o.O
You can turn off usb auto redirecton in virt-manager's preferences. I
I'm open for discussion to changing this to off by default but until
then please let's not block the testing migration (the version in
jessie is affected by the same bug).
Cheers,
-- Guido
More information about the Pkg-libvirt-maintainers
mailing list