Diffusion FreeBSD src repository 419da61f8203

bhyve: improve input validation in pci_xhci
419da61f8203
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

bhyve: improve input validation in pci_xhci

Several functions did not validate the slot index resulting in OOB read
on the heap of the slot device structure which could lead to arbitrary
reads/writes and potentially code execution.

Reported by: Synacktiv
Reviewed by: markj (earlier), jhb
Security: CVE-2024-41721
Security: HYP-02
Sponsored by: The Alpha-Omega Project
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D45996

(cherry picked from commit e72d86ad9c62c8054d7977a71f08e68ef755c132)

Details

Provenance

khorben_defora.org	Authored on Jul 17 2024, 3:04 PM
emaste	Committed on Thu, Sep 19, 12:36 PM

Reviewer

Differential Revision

Restricted Differential Revision

Parents

rG79c34d704f31: if_ovpn: declare our dependency on the crypto module

Branches

Unknown

Tags

Unknown

Event Timeline

emaste committed rG419da61f8203: bhyve: improve input validation in pci_xhci (authored by khorben_defora.org).Thu, Sep 19, 12:36 PM

emaste added an edge: Restricted Differential Revision.Thu, Sep 19, 12:40 PM

emaste mentioned this in rG2abd2ad64899: bhyve: improve input validation in pci_xhci.Thu, Sep 19, 12:49 PM

gordon mentioned this in rG3c6c0dcb5acb: bhyve: improve input validation in pci_xhci.Thu, Sep 19, 1:30 PM

gordon mentioned this in rGba46f1174972: bhyve: improve input validation in pci_xhci.

gordon mentioned this in rG5f035df278cc: bhyve: improve input validation in pci_xhci.Thu, Sep 19, 1:35 PM

gordon mentioned this in rGe7a790dc3ffe: bhyve: improve input validation in pci_xhci.

Changes (1)

Path

Size

usr.sbin/

bhyve/

rG419da61f8203

usr.sbin/bhyve/pci_xhci.c

Loading...