How secure is QEMU/KVM?

Question

I'm worrying about the security of the VM host machine (against guests) as the Kernel-Based Vitrual Machine operates at kernel level.

UPDATE: Is there any guarantee that a guest can't manipulate/break the host system (execute instructions, etc.)?

UPDATE (to avoid "absolutism"): If there isn't any such guarantee, is the KVM less secure, than a non-K VM?

Please rephrase your question so it is easier to answer it exactly, as it is right now we could say "very" and it would be a valid answer. What is your concern? did you read something that make you doubt? — Purefan, Jun 04 '15 at 14:39

score 3 · Answer 1 · answered Jun 04 '15 at 14:59

3

There is no guarantee with any computational system that it can't be broken/manipulated.

Here is a list of vulnerabilities in QEMU, its up to you to determine if your specific version is vulnerable or not, and how "easy" it is to be targeted.

As a side note: we tend to avoid absolutisms in infosec because there usually is no guarantee of anything, what is bullet proof today is a swiss cheese tomorrow.

answered Jun 04 '15 at 14:59

Purefan

3,560
19
26

Ideas are always bullet proof. ;) – Al Klimov Jun 04 '15 at 15:03

How secure is QEMU/KVM?

1 Answers1