On Mon, Jul 24 2023 at 10:08:50 AM -0400, Demi Marie Obenour
<demioben...@gmail.com> wrote:
I saw that libguestfs has a guestmount(1) tool, and I think this
could be
a potential solution. An exploit against the kernel FS driver would
only
grant access to a KVM guest, and the QEMU process can be tightly
sandboxed
by means such as seccomp and SELinux.
Ah, interesting. Maybe something like that would work, indeed....
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
