VirtualBox

Ticket #14290 (new defect)

Opened 7 years ago

Last modified 6 years ago

Content of the hosts video memory is shown

Reported by: Sworddragon Owned by:
Component: 3D support Version: VirtualBox 5.0.0
Keywords: Cc:
Guest type: Windows Host type: Linux

Description

For example if I'm opening an application on the guest system that seems to take advantage of 3D acceleration (in this case "XPS-Viewer EP" on Windows XP) I'm seeing content from the memory of the graphics card (for example textures from a game that I have played on the host system before).

Additionally to this issue that I'm seeing content of the graphics card instead of the document this behavior could leak unwanted data to the guest system. Maybe VirtualBox could allocate and zeroing the amount of video memory that is configured for the guest system before it starts to avoid that the guest system can read anything at any time from the host system (the same applies for the system memory if not already done).

Change History

comment:1 Changed 6 years ago by Sworddragon

On testing this a bit it looks like VirtualBox does always use the hosts system memory and never the hosts video memory for the guests video memory independent if 2D and/or 3D hardware acceleration is enabled or not in the guest. So this part would be already secure in case VirtualBox does indeed already zeroing the hosts system memory that it assigns to the guests system and video memory.

But now I'm wondering why I saw content of the hosts video memory in the guest. And I'm also wondering if the guest could technically see it too.

Well, does anybody know what could have caused this behavior? Or is enabling 2D and/or 3D hardware acceleration insecure?

Note: See TracTickets for help on using tickets.

www.oracle.com
ContactPrivacy policyTerms of Use