CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

projects / FreeBSD / FreeBSD.git / commit

author	Vincenzo Maffione <vmaffione@FreeBSD.org>
	Wed, 16 Mar 2022 06:57:54 +0000 (06:57 +0000)
committer	Vincenzo Maffione <vmaffione@FreeBSD.org>
	Wed, 16 Mar 2022 06:57:54 +0000 (06:57 +0000)
commit	694ea59c7021c25417e6d516362d2f59b4e2c343
tree	37ba93a0db0078308cf2b87e5407f91345fa1291	tree \| snapshot
parent	adbf7727b3a2aad3c2faa6e543ee7fa7a6c9a3d5	commit \| diff

netmap: Fix integer overflow in nmreq_copyin

An unsanitized field in an option could be abused, causing an integer
overflow followed by kernel memory corruption. This might be used
to escape jails/containers.

Reported by: Reno Robert and Lucas Leong (@_wmliang_) of Trend Micro
Zero Day Initiative
Security: CVE-2022-23085

sys/dev/netmap/netmap.c

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom