Lucene search
PRIOn knowledge basePRION:CVE-2022-23085HistoryFeb 15, 2024 - 5:15 a.m.
Design/Logic Flaw
2024-02-1505:15:00
PRIOn knowledge base
www.prio-n.com
5
integer overflow
nmreq_copyin()
kernel memory corruption
privileged process
jail
devfs_ruleset
A user-provided integer option was passed to nmreq_copyin() without checking if it would overflow. This insufficient bounds checking could lead to kernel memory corruption.
On systems configured to include netmap in their devfs_ruleset, a privileged process running in a jail can affect the host environment.
Related
zdi
zdi
FreeBSD Kernel Netmap Integer Overflow Privilege Escalation Vulnerability
2022-09-20 00:00:00
cvelist
cvelist
CVE-2022-23085 Potential jail escape vulnerabilities in netmap
2024-02-15 04:52:17
cve
cve
CVE-2022-23085
2024-02-15 05:15:09
nvd
nvd
CVE-2022-23085
2024-02-15 05:15:09
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:04.netmap
2022-04-06 00:00:00
nessus
nessus
freebsd
freebsd
FreeBSD -- Potential jail escape vulnerabilities in netmap
2022-04-06 00:00:00