Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD8EAAF135-1893-11ED-9B22-002590C1F29C
HistoryAug 09, 2022 - 12:00 a.m.

FreeBSD -- Missing bounds check in 9p message handling

2022-08-0900:00:00
vuxml.freebsd.org
11

0.0004 Low

EPSS

Percentile

9.0%

JSON

Problem Description:
The implementation of lib9p’s handling of RWALK messages was
missing a bounds check needed when unpacking the message contents.
The missing check means that the receipt of a specially crafted
message will cause lib9p to overwrite unrelated memory.
Impact:
The bug can be triggered by a malicious bhyve guest kernel to
overwrite memory in the bhyve(8) process. This could potentially lead
to user-mode code execution on the host, subject to bhyve’s Capsicum
sandbox.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd= 13.1UNKNOWN
FreeBSDanynoarchfreebsd< 13.1_1UNKNOWN

Related

prion 1
nvd 1
nessus 1
freebsd_advisory 1
cvelist 1
cve 1
prion
prion
Out-of-bounds
2024-02-15 06:15:00
nvd
nvd
CVE-2022-23092
2024-02-15 06:15:45
nessus
nessus
FreeBSD : FreeBSD -- Missing bounds check in 9p message handling (8eaaf135-1893-11ed-9b22-002590c1f29c)
2022-08-11 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:12.lib9p
2022-08-09 00:00:00
cvelist
cvelist
CVE-2022-23092 Missing bounds check in 9p message handling
2024-02-15 05:13:50
cve
cve
CVE-2022-23092
2024-02-15 06:15:45

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for 8EAAF135-1893-11ED-9B22-002590C1F29C
prion1nvd1nessus1freebsd_advisory1cvelist1cve1