A user-provided integer option was passed to nmreq_copyin() without checking if it would overflow. This insufficient bounds checking could lead to kernel memory corruption.
On systems configured to include netmap in their devfs_ruleset, a privileged process running in a jail can affect the host environment.
Metrics
Affected Vendors & Products
References
History
Mon, 09 Dec 2024 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
cvssV3_1
|
Mon, 09 Dec 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Freebsd
Freebsd freebsd |
|
Weaknesses | CWE-787 | |
CPEs | cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta3-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p10:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p5:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p6:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p7:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p8:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p9:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc5-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc5:*:*:*:*:*:* |
|
Vendors & Products |
Freebsd
Freebsd freebsd |
MITRE
Status: PUBLISHED
Assigner: freebsd
Published: 2024-02-15T04:52:17.556Z
Updated: 2024-08-03T03:28:43.504Z
Reserved: 2022-01-10T22:07:46.040Z
Link: CVE-2022-23085
Vulnrichment
Updated: 2024-08-03T03:28:43.504Z
NVD
Status : Analyzed
Published: 2024-02-15T05:15:09.110
Modified: 2024-12-09T17:27:22.803
Link: CVE-2022-23085
Redhat
No data.