HomeFreeBSD
Diffusion FreeBSD src repository e72d86ad9c62

bhyve: improve input validation in pci_xhci
e72d86ad9c62
Actions

Description

bhyve: improve input validation in pci_xhci

Several functions did not validate the slot index resulting in OOB read
on the heap of the slot device structure which could lead to arbitrary
reads/writes and potentially code execution.

Reported by: Synacktiv
Reviewed by: markj (earlier), jhb
Security: CVE-2024-41721
Security: HYP-02
Sponsored by: The Alpha-Omega Project
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D45996

Details

Provenance
khorben_defora.orgAuthored on Jul 17 2024, 3:04 PM
emasteCommitted on Sep 19 2024, 12:26 PM
Reviewer
markj
Differential Revision
Restricted Differential Revision
Parents
rG5d045d556b1c: syslogd: Ignore getaddrinfo() errors if -ss is specified
Branches
Unknown
Tags
Unknown

Changes (1)

PathSize
usr.sbin/
bhyve/

rGe72d86ad9c62

View Options

usr.sbin/bhyve/pci_xhci.c

Loading...