[Qemu-devel] QEMU soundcards vulnerable to jack retasking?

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Qemu-devel] QEMU soundcards vulnerable to jack retasking?

From:	bancfc
Subject:	[Qemu-devel] QEMU soundcards vulnerable to jack retasking?
Date:	Fri, 25 Nov 2016 21:25:00 +0100
User-agent:	Roundcube Webmail/1.0.6

Recent security research shows that soundcards support surreptitiouslyswitching line-out jacks into line-in by modifying the software stack.The way modern speakers and headphones are designed makes them readilyusable as microphones. The Intel High Definition (HD) Audio standardswhich all modern consumer soundcards are based mandates this stupidity.


https://arxiv.org/ftp/arxiv/papers/1611/1611.07350.pdf

Does anyone know if QEMU's emulated sound devices follow this standard?If yes then a malicious guest that can modify the virt sound hardwarecan turn PC speakers into surveillance devices even if the microphone isdisabled on the host. The only solution is completely denying untrustedVMs access to a virtual sound device.

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] QEMU soundcards vulnerable to jack retasking?, bancfc <=
- Re: [Qemu-devel] QEMU soundcards vulnerable to jack retasking?, Dr. David Alan Gilbert, 2016/11/28
  - Re: [Qemu-devel] QEMU soundcards vulnerable to jack retasking?, Daniel P. Berrange, 2016/11/28
- Re: [Qemu-devel] QEMU soundcards vulnerable to jack retasking?, Gerd Hoffmann, 2016/11/28

Prev by Date: [Qemu-devel] Problems with qemu "modern" virtio on sparc64
Next by Date: [Qemu-devel] [PATCH] {disas, slirp}: Replace min/max with MIN/MAX macros
Previous by thread: [Qemu-devel] Problems with qemu "modern" virtio on sparc64
Next by thread: Re: [Qemu-devel] QEMU soundcards vulnerable to jack retasking?
Index(es):
- Date
- Thread