5 matches found
CVE-2023-3494
The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports. The interface lets the guest copy a string into a buffer resident in the bhyve process' memory. A bug in the state machine implementation can result in a buffer overflowing when copyin...
FreeBSD : FreeBSD -- bhyve privileged guest escape via fwctl (ab437561-47c0-11ee-8e38-002590c1f29c)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the ab437561-47c0-11ee-8e38-002590c1f29c advisory. - The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86...
CVE-2023-3494 bhyve privileged guest escape via fwctl
The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports. The interface lets the guest copy a string into a buffer resident in the bhyve process' memory. A bug in the state machine implementation can result in a buffer overflowing when copyin...
CVE-2023-3494
The CVE-2023-3494 issue affects the FreeBSD bhyve fwctl interface. A bug in the fwctl state machine can cause a buffer overflow when a guest copies a string into a host resident buffer, enabling malicious, privileged guest software to achieve code execution on the host bhyve process (typically ru...
CVE-2023-3494 bhyve privileged guest escape via fwctl
The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports. The interface lets the guest copy a string into a buffer resident in the bhyve process' memory. A bug in the state machine implementation can result in a buffer overflowing when copyin...