Lucene search
FreeBSD27D39055-B61B-11EC-9EBC-1C697AA5A594HistoryApr 06, 2022 - 12:00 a.m.
FreeBSD -- Potential jail escape vulnerabilities in netmap
2022-04-0600:00:00
vuxml.freebsd.org
17
0.0005 Low
EPSS
Percentile
16.2%
Problem Description:
The total size of the user-provided nmreq to nmreq_copyin() was
first computed and then trusted during the copyin. This
time-of-check to time-of-use bug could lead to kernel memory
corruption. [CVE-2022-23084]
A user-provided integer option was passed to nmreq_copyin() without
checking if it would overflow. This insufficient bounds checking
could lead to kernel memory corruption. [CVE-2022-23085]
Impact:
On systems configured to include netmap in their devfs_ruleset, a
privileged process running in a jail can affect the host
environment.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | freebsd-kernel | = 13.0 | UNKNOWN |
| FreeBSD | any | noarch | freebsd-kernel | < 13.0_11 | UNKNOWN |
Related
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:04.netmap
2022-04-06 00:00:00
nessus
nessus
zdi
zdi
cvelist
cvelist
CVE-2022-23085 Potential jail escape vulnerabilities in netmap
2024-02-15 04:52:17
CVE-2022-23084 Potential jail escape vulnerabilities in netmap
2024-02-15 04:52:09
nvd
nvd
CVE-2022-23084
2024-02-15 05:15:08
CVE-2022-23085
2024-02-15 05:15:09
prion
prion
Memory corruption
2024-02-15 05:15:00
Design/Logic Flaw
2024-02-15 05:15:00
cve
cve
CVE-2022-23084
2024-02-15 05:15:08
CVE-2022-23085
2024-02-15 05:15:09