VLC volume on tracks & videos resets after repeating erroneously. (seems to be a possible exploit; wifi 6 is turned off in bios & no internet or power.. connected when this happens) Audio also cuts out at certain points in the track as if the track has been manipulated yet it seems to be have been.
Much appreciated.
System:
Kernel: 6.1.6-hardened2-1-hardened arch: x86_64 bits: 64 compiler: gcc
v: 12.2.0 parameters: pti=on page_alloc.shuffle=1
BOOT_IMAGE=/@/boot/vmlinuz-linux-hardened
root=UUID=05bceb4d-b058-461f-b1fc-5c0e56056f6b rw rootflags=subvol=@
quiet
cryptdevice=UUID=fb551a59-b1f6-4fb4-a902-0a18c46bbd4c:luks-fb551a59-b1f6-4fb4-a902-0a18c46bbd4c
root=/dev/mapper/luks-fb551a59-b1f6-4fb4-a902-0a18c46bbd4c quiet splash
rd.udev.log_priority=3 vt.global_cursor_default=0 loglevel=3 ibt=off
Desktop: KDE Plasma v: 5.26.5 tk: Qt v: 5.15.8 info: latte-dock
wm: kwin_x11 vt: 1 dm: SDDM Distro: Garuda Linux base: Arch Linux
Machine:
Type: Laptop System: ASUSTeK product: VivoBook_ASUSLaptop X412DAP_F412DA
v: 1.0 serial: <superuser required>
Mobo: ASUSTeK model: X412DAP v: 1.0 serial: <superuser required>
UEFI: American Megatrends v: X412DAP.300 date: 12/25/2019
Battery:
ID-1: BAT0 charge: 18.6 Wh (61.6%) condition: 30.2/37.1 Wh (81.4%)
volts: 7.8 min: 7.8 model: ASUSTeK ASUS Battery type: Li-ion serial: N/A
status: discharging cycles: 62
CPU:
Info: model: AMD Ryzen 3 3250U with Radeon Graphics bits: 64 type: MT MCP
arch: Zen/Zen+ note: check gen: 1 level: v3 note: check built: 2019
process: GF 12nm family: 0x17 (23) model-id: 0x18 (24) stepping: 1
microcode: 0x8108109
Topology: cpus: 1x cores: 2 tpc: 2 threads: 4 smt: enabled cache:
L1: 192 KiB desc: d-2x32 KiB; i-2x64 KiB L2: 1024 KiB desc: 2x512 KiB
L3: 4 MiB desc: 1x4 MiB
Speed (MHz): avg: 1400 min/max: 1400/2600 boost: enabled scaling:
driver: acpi-cpufreq governor: powersave cores: 1: 1400 2: 1400 3: 1400
4: 1400 bogomips: 20769
Flags: avx avx2 ht lm nx pae sse sse2 sse3 sse4_1 sse4_2 sse4a ssse3 svm
Vulnerabilities: <filter>
Graphics:
Device-1: AMD Picasso/Raven 2 [Radeon Vega Series / Radeon Mobile Series]
vendor: ASUSTeK driver: amdgpu v: kernel arch: GCN-5 code: Vega
process: GF 14nm built: 2017-20 pcie: gen: 3 speed: 8 GT/s lanes: 16
ports: active: eDP-1 empty: HDMI-A-1 bus-ID: 03:00.0 chip-ID: 1002:15d8
class-ID: 0300 temp: 54.0 C
Display: x11 server: X.Org v: 21.1.6 with: Xwayland v: 22.1.7
compositor: kwin_x11 driver: X: loaded: amdgpu unloaded: modesetting
alternate: fbdev,vesa dri: radeonsi gpu: amdgpu display-ID: :0 screens: 1
Screen-1: 0 s-res: 1920x1080 s-dpi: 96 s-size: 508x285mm (20.00x11.22")
s-diag: 582mm (22.93")
Monitor-1: eDP-1 mapped: eDP model: BOE Display 0x07f6 built: 2018
res: 1920x1080 hz: 60 dpi: 158 gamma: 1.2 size: 309x174mm (12.17x6.85")
diag: 355mm (14") ratio: 16:9 modes: max: 1920x1080 min: 640x480
API: OpenGL v: 4.6 Mesa 22.3.3 renderer: AMD Radeon Vega 3 Graphics
(raven2 LLVM 15.0.7 DRM 3.49 6.1.6-hardened2-1-hardened)
direct render: Yes
Audio:
Device-1: AMD Raven/Raven2/Fenghuang HDMI/DP Audio driver: snd_hda_intel
v: kernel pcie: gen: 3 speed: 8 GT/s lanes: 16 bus-ID: 03:00.1
chip-ID: 1002:15de class-ID: 0403
Device-2: AMD ACP/ACP3X/ACP6x Audio Coprocessor driver: snd_pci_acp3x
v: kernel
alternate: snd_rn_pci_acp3x,snd_pci_acp5x,snd_pci_acp6x,snd_acp_pci,snd_rpl_pci_acp6x,snd_pci_ps,snd_sof_amd_renoir,snd_sof_amd_rembrandt
pcie: gen: 3 speed: 8 GT/s lanes: 16 bus-ID: 03:00.5 chip-ID: 1022:15e2
class-ID: 0480
Device-3: AMD Family 17h/19h HD Audio vendor: ASUSTeK
driver: snd_hda_intel v: kernel pcie: gen: 3 speed: 8 GT/s lanes: 16
bus-ID: 03:00.6 chip-ID: 1022:15e3 class-ID: 0403
Sound API: ALSA v: k6.1.6-hardened2-1-hardened running: yes
Sound Server-1: PulseAudio v: 16.1 running: no
Sound Server-2: PipeWire v: 0.3.64 running: yes
Network:
Message: No PCI device data found.
Device-1: Realtek RTL8153 Gigabit Ethernet Adapter type: USB driver: r8152
bus-ID: 2-1.4:3 chip-ID: 0bda:8153 class-ID: 0000 serial: <filter>
IF: enp3s0f3u1u4 state: up speed: 1000 Mbps duplex: full mac: <filter>
Drives:
Local Storage: total: 238.47 GiB used: 15.61 GiB (6.5%)
SMART Message: Unable to run smartctl. Root privileges required.
ID-1: /dev/nvme0n1 maj-min: 259:0 vendor: Samsung
model: MZVLQ256HAJD-00000 size: 238.47 GiB block-size: physical: 512 B
logical: 512 B speed: 31.6 Gb/s lanes: 4 type: SSD serial: <filter>
rev: FXV7000Q temp: 18.9 C scheme: GPT
Partition:
ID-1: / raw-size: 45.9 GiB size: 45.9 GiB (100.00%) used: 15.35 GiB (33.5%)
fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-fb551a59-b1f6-4fb4-a902-0a18c46bbd4c
ID-2: /boot/efi raw-size: 500 MiB size: 499 MiB (99.80%)
used: 259.4 MiB (52.0%) fs: vfat dev: /dev/nvme0n1p1 maj-min: 259:1
ID-3: /home raw-size: 45.9 GiB size: 45.9 GiB (100.00%)
used: 15.35 GiB (33.5%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-fb551a59-b1f6-4fb4-a902-0a18c46bbd4c
ID-4: /var/log raw-size: 45.9 GiB size: 45.9 GiB (100.00%)
used: 15.35 GiB (33.5%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-fb551a59-b1f6-4fb4-a902-0a18c46bbd4c
ID-5: /var/tmp raw-size: 45.9 GiB size: 45.9 GiB (100.00%)
used: 15.35 GiB (33.5%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-fb551a59-b1f6-4fb4-a902-0a18c46bbd4c
Swap:
Kernel: swappiness: 133 (default 60) cache-pressure: 100 (default)
ID-1: swap-1 type: zram size: 5.75 GiB used: 572.2 MiB (9.7%)
priority: 100 dev: /dev/zram0
Sensors:
System Temperatures: cpu: 54.9 C mobo: N/A gpu: amdgpu temp: 54.0 C
Fan Speeds (RPM): cpu: 0
Info:
Processes: 228 Uptime: 1h 2m wakeups: 50878 Memory: 5.75 GiB
used: 2.25 GiB (39.1%) Init: systemd v: 252 default: graphical
tool: systemctl Compilers: gcc: 12.2.1 Packages: pm: pacman pkgs: 1255
libs: 329 tools: octopi,paru Shell: fish v: 3.6.0 default: Bash v: 5.1.16
running-in: konsole inxi: 3.3.24
Garuda (2.6.14-1):
System install date: 2023-01-04
Last full system update: 2023-01-21 ↻
Is partially upgraded: No
Relevant software: snapper NetworkManager mkinitcpio
Windows dual boot: No/Undetected
Failed units: dev-nvme0n1p2.swap
I do it fore you, maybe you can't edit this one.
Audio also cuts out at certain points in the track as if the track has been manipulated yet it seems to be have *NOT been.
SGS
21 January 2023 19:05
3
And please, format your first post. Read
Writing a well formatted post in the forum (Discource powered) is important, if you want readers to easily read and understand.
It's especially important for terminal output.
Here is a brief tutorial.
In short
terminal text
then others can easily expand or copy the text the view. Move the mouse pointer over it in the upper right corner.
Move the mouse pointer over it in the upper right corner.
3 Likes
Zenbook system output
System:
Kernel: 6.1.7-hardened1-1-hardened arch: x86_64 bits: 64 compiler: gcc
v: 12.2.1 parameters: pti=on page_alloc.shuffle=1
BOOT_IMAGE=/@/boot/vmlinuz-linux-hardened
root=UUID=55c56afe-ed85-4263-be74-dacd068ee188 rw rootflags=subvol=@
quiet
cryptdevice=UUID=341d1267-be1c-4197-9640-7c4201f29cac:luks-341d1267-be1c-4197-9640-7c4201f29cac
root=/dev/mapper/luks-341d1267-be1c-4197-9640-7c4201f29cac quiet splash
rd.udev.log_priority=3 vt.global_cursor_default=0 loglevel=3 ibt=off
Desktop: KDE Plasma v: 5.26.5 tk: Qt v: 5.15.8 info: latte-dock
wm: kwin_x11 vt: 1 dm: SDDM Distro: Garuda Linux base: Arch Linux
Machine:
Type: Laptop System: ASUSTeK product: ZenBook UX425UG_Q408UG v: 1.0
serial: <superuser required>
Mobo: ASUSTeK model: UX425UG v: 1.0 serial: <superuser required>
UEFI: American Megatrends LLC. v: UX425UG.301 date: 12/05/2021
Battery:
ID-1: BATT charge: 46.5 Wh (91.9%) condition: 50.6/63.1 Wh (80.1%)
volts: 12.0 min: 12.0 model: ASUSTeK UX425 type: Li-ion serial: <filter>
status: discharging cycles: 124
CPU:
Info: model: AMD Ryzen 5 5500U with Radeon Graphics bits: 64 type: MT MCP
arch: Zen 2 gen: 3 level: v3 note: check built: 2020-22
process: TSMC n7 (7nm) family: 0x17 (23) model-id: 0x68 (104) stepping: 1
microcode: 0x8608103
Topology: cpus: 1x cores: 6 tpc: 2 threads: 12 smt: enabled cache:
L1: 384 KiB desc: d-6x32 KiB; i-6x32 KiB L2: 3 MiB desc: 6x512 KiB L3: 8 MiB
desc: 2x4 MiB
Speed (MHz): avg: 1458 high: 2100 min/max: 1400/4056 boost: enabled
scaling: driver: acpi-cpufreq governor: schedutil cores: 1: 2100 2: 1400
3: 1400 4: 1400 5: 1400 6: 1400 7: 1400 8: 1400 9: 1400 10: 1400 11: 1400
12: 1400 bogomips: 50322
Flags: avx avx2 ht lm nx pae sse sse2 sse3 sse4_1 sse4_2 sse4a ssse3 svm
Vulnerabilities: <filter>
Graphics:
Device-1: NVIDIA TU117M [GeForce MX450] vendor: ASUSTeK driver: nvidia
v: 525.85.05 alternate: nouveau,nvidia_drm non-free: 525.xx+
status: current (as of 2022-12) arch: Turing code: TUxxx
process: TSMC 12nm FF built: 2018-22 pcie: gen: 1 speed: 2.5 GT/s lanes: 4
link-max: gen: 4 speed: 16 GT/s lanes: 16 bus-ID: 02:00.0
chip-ID: 10de:1f9c class-ID: 0302
Device-2: AMD Lucienne vendor: ASUSTeK driver: amdgpu v: kernel
arch: GCN-5.1 code: Vega-2 process: TSMC n7 (7nm) built: 2018-21 pcie:
gen: 3 speed: 8 GT/s lanes: 16 link-max: gen: 4 speed: 16 GT/s ports:
active: eDP-1 empty: DP-1,DP-2,HDMI-A-1 bus-ID: 04:00.0 chip-ID: 1002:164c
class-ID: 0300 temp: 40.0 C
Display: x11 server: X.Org v: 21.1.6 with: Xwayland v: 22.1.7
compositor: kwin_x11 driver: X: loaded: amdgpu,nvidia
unloaded: modesetting,nouveau alternate: fbdev,nv,vesa dri: radeonsi
gpu: amdgpu display-ID: :0 screens: 1
Screen-1: 0 s-res: 1920x1080 s-dpi: 96 s-size: 508x285mm (20.00x11.22")
s-diag: 582mm (22.93")
Monitor-1: eDP-1 mapped: eDP model: Najing CEC Panda 0x0035 built: 2021
res: 1920x1080 hz: 60 dpi: 158 gamma: 1.2 size: 309x174mm (12.17x6.85")
diag: 355mm (14") ratio: 16:9 modes: max: 1920x1080 min: 640x480
API: OpenGL v: 4.6 Mesa 22.3.3 renderer: AMD Radeon Graphics (renoir LLVM
15.0.7 DRM 3.49 6.1.7-hardened1-1-hardened) direct render: Yes
Audio:
Device-1: AMD Renoir Radeon High Definition Audio vendor: ASUSTeK
driver: snd_hda_intel v: kernel pcie: gen: 3 speed: 8 GT/s lanes: 16
link-max: gen: 4 speed: 16 GT/s bus-ID: 04:00.1 chip-ID: 1002:1637
class-ID: 0403
Device-2: AMD ACP/ACP3X/ACP6x Audio Coprocessor vendor: ASUSTeK
driver: snd_rn_pci_acp3x v: kernel
alternate: snd_pci_acp3x,snd_pci_acp5x,snd_pci_acp6x,snd_acp_pci,snd_rpl_pci_acp6x,snd_pci_ps,snd_sof_amd_renoir,snd_sof_amd_rembrandt
pcie: gen: 3 speed: 8 GT/s lanes: 16 link-max: gen: 4 speed: 16 GT/s
bus-ID: 04:00.5 chip-ID: 1022:15e2 class-ID: 0480
Device-3: AMD Family 17h/19h HD Audio vendor: ASUSTeK
driver: snd_hda_intel v: kernel pcie: gen: 3 speed: 8 GT/s lanes: 16
link-max: gen: 4 speed: 16 GT/s bus-ID: 04:00.6 chip-ID: 1022:15e3
class-ID: 0403
Sound API: ALSA v: k6.1.7-hardened1-1-hardened running: yes
Sound Server-1: PulseAudio v: 16.1 running: no
Sound Server-2: PipeWire v: 0.3.64 running: yes
Network:
Message: No PCI device data found.
Device-1: Realtek RTL8153 Gigabit Ethernet Adapter type: USB driver: r8152
bus-ID: 2-1.4:3 chip-ID: 0bda:8153 class-ID: 0000 serial: <filter>
IF: enp4s0f3u1u4 state: up speed: 1000 Mbps duplex: full mac: <filter>
Drives:
Local Storage: total: 960.43 GiB used: 16.25 GiB (1.7%)
ID-1: /dev/mmcblk0 maj-min: 179:0 vendor: SanDisk model: SD32G
size: 28.91 GiB block-size: physical: 512 B logical: 512 B type: SSD
serial: <filter> scheme: MBR
SMART Message: Unknown smartctl error. Unable to generate data.
SMART Message: Unable to run smartctl. Root privileges required.
ID-2: /dev/nvme0n1 maj-min: 259:0 vendor: Samsung model: SSD 980 1TB
size: 931.51 GiB block-size: physical: 512 B logical: 512 B speed: 31.6 Gb/s
lanes: 4 type: SSD serial: <filter> rev: 1B4QFXO7 temp: 31.9 C scheme: GPT
Partition:
ID-1: / raw-size: 42.32 GiB size: 42.32 GiB (100.00%)
used: 16.22 GiB (38.3%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-341d1267-be1c-4197-9640-7c4201f29cac
ID-2: /boot/efi raw-size: 100 MiB size: 96 MiB (96.00%)
used: 26 MiB (27.1%) fs: vfat dev: /dev/nvme0n1p1 maj-min: 259:1
ID-3: /home raw-size: 42.32 GiB size: 42.32 GiB (100.00%)
used: 16.22 GiB (38.3%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-341d1267-be1c-4197-9640-7c4201f29cac
ID-4: /var/log raw-size: 42.32 GiB size: 42.32 GiB (100.00%)
used: 16.22 GiB (38.3%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-341d1267-be1c-4197-9640-7c4201f29cac
ID-5: /var/tmp raw-size: 42.32 GiB size: 42.32 GiB (100.00%)
used: 16.22 GiB (38.3%) fs: btrfs dev: /dev/dm-0 maj-min: 254:0
mapped: luks-341d1267-be1c-4197-9640-7c4201f29cac
Swap:
Kernel: swappiness: 133 (default 60) cache-pressure: 100 (default)
ID-1: swap-1 type: zram size: 7.17 GiB used: 0 KiB (0.0%) priority: 100
dev: /dev/zram0
Sensors:
System Temperatures: cpu: 46.1 C mobo: N/A gpu: amdgpu temp: 41.0 C
Fan Speeds (RPM): N/A
Info:
Processes: 298 Uptime: 7m wakeups: 97 Memory: 7.17 GiB
used: 2.12 GiB (29.5%) Init: systemd v: 252 default: graphical
tool: systemctl Compilers: gcc: 12.2.1 clang: 15.0.7 Packages: pm: pacman
pkgs: 1320 libs: 349 tools: octopi,paru Shell: fish v: 3.6.0 default: Bash
v: 5.1.16 running-in: konsole inxi: 3.3.24
Garuda (2.6.14-1):
System install date: 2022-12-31
Last full system update: 2023-01-21
Is partially upgraded: No
Relevant software: snapper NetworkManager mkinitcpio nvidia-dkms
Windows dual boot: Probably (Run as root to verify)
Failed units:
Also noticed that whilst VLC was open for long periods of time (over an hour); on a system with WiFi chip removed due to it being older no internet & on battery not power (older AMD APU pre zen); it was possible (guessing for a remote attacker) to reset the system power profiles to turn the screen off.
Most likely an exploit to frustrate the user. Not sure how this is possible but have experienced it on a few systems now. Some sort of Electronic magnetic frequency manipulation or to access to the outdated Bluetooth (not being used) on a Bose portable battery speaker maybe. Surprising being able to use an audio cable to do something like this; or maybe exploited Bluetooth and memory corruption; or something wild only seen in research labs. Smart people around here.
Thought it might be helpful to bring this up in the forum to give KDE team something to think about with version 6; know there is a complete power use overhaul in the works; more efficient user interface could also have security enhancements. Excited. =]
Much appreciated.
SGS
28 January 2023 00:02
6
I’m pretty sure, no one from the KDE team has been reading here, since psifidotos gave up the latte dock project.
1 Like
The simplest explanation is most likely to be the correct one. Occam's razor - Wikipedia
The theory you are suggesting is--again--incredibly far-fetched and unrealistic. You said yourself the computer isn't even on the LAN, so remotely interacting with it is next to impossible. Your theory about a compromised Bluetooth speaker broadcasting a special electromagnetic frequency that hijacks the power settings in your device is very imaginative.
If a highly motivated and skilled attacker were able to gain remote control of your device, they would not turn off the screen to tease you. They would quietly add it to their botnet and move on.
A laptop turning off the screen after an hour of no input (watching a video) while running on battery is basically default behavior. If you want to prevent that from happening you should install an idle inhibitor and turn it on while you watch your videos.
5 Likes
Extrapolating a motive is also very imaginative; even if you had more information to threat model; would be hard to prove either way.
Just one example of a possible work around to an isolated machine.Researcher Turns RAM into Wi-Fi Card to Hack Isolated Systems | Tom's Hardware )
Track plays fine in Audacious; most likely the package was dealt some sort of payload injection when it was updated recently; which is still skilled without even investigating which methods might have been taken.
Perspective is of course under normal circumstances quite valid. Hopefully this will be fixed in the next patch. Might be interesting to also look at the other bugs on this account. Usually experiencing considerably strange behavior to even make a post.
Much appreciated.
