2 matches found
CVE-2021-29631
CVE-2021-29631 affects FreeBSD bhyve, specifically certain VirtIO-based device models. The issue is a missing or inadequate error handling when fetching I/O descriptors, which can allow a malicious guest to cause the device model to operate on uninitialized I/O vectors, leading to memory corrupti...
FreeBSD : FreeBSD -- Missing error handling in bhyve(8) device models (a6d5d4c1-0564-11ec-b69d-4062311215d5)
Certain VirtIO-based device models failed to handle errors when fetching I/O descriptors. Such errors could be triggered by a malicious guest. As a result, the device model code could be tricked into operating on uninitialized I/O vectors, leading to memory corruption. Impact : A malicious guest...