2 matches found
CVE-2018-17160
In FreeBSD before 11.2-STABLEr341486 and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bhyve host possibly permitting arbitrary code execution. A guest OS using a firmware image can cause...
CVE-2018-17160
The CVE concerns FreeBSD bhyve: before 11.2-STABLE (r341486) and 11.2-RELEASE-p6, insufficient bounds checking in a bhyve device model can let a guest OS overwrite host memory, potentially enabling arbitrary code execution with root privileges. Affected behavior includes host crashes or code exec...