Mitigate Thunderspy - Githubissues

USBGuard / usbguard

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)

https://usbguard.github.io/

GNU General Public License v2.0

1.12k stars 136 forks source link

Mitigate Thunderspy #381

Open bitnom opened 4 years ago

bitnom commented 4 years ago

Thunderspy:

We have found 7 vulnerabilities in Intel’s design and developed 9 realistic scenarios how these could be exploited by a malicious entity to get access to your system, past the defenses that Intel had set up for your protection.

Proof of concept vulnerability checker: spycheck-linux

Possible mitigation code: spiblock

This is a request for comment on rolling mitigation code into usbguard, if possible and not redundant.

muelli commented 4 years ago

how does this affect USB and USBGuard?

bitnom commented 4 years ago

how does this affect USB and USBGuard?

The vulnerability is affecting usb-c/thunderbolt. It's exploited by maliciously interfacing with the usb-c port by various means.