talexander
/
freebsd
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd/usr.sbin/bhyve
History
Pierre Pronchery e72d86ad9c bhyve: improve input validation in pci_xhci 
Several functions did not validate the slot index resulting in OOB read
on the heap of the slot device structure which could lead to arbitrary
reads/writes and potentially code execution.

Reported by:	Synacktiv
Reviewed by:	markj (earlier), jhb
Security:	CVE-2024-41721
Security:	HYP-02
Sponsored by:	The Alpha-Omega Project
Sponsored by:	The FreeBSD Foundation
Differential Revision:	https://reviews.freebsd.org/D45996
 		2024-09-19 08:26:07 -04:00
..
aarch64
amd64
gdb
kbdlayout
Makefile
Makefile.depend
Makefile.depend.options
acpi.c
acpi.h
acpi_device.c
acpi_device.h
ahci.h
audio.c
audio.h
basl.c
basl.h
bhyve.8
bhyve_config.5
bhyvegc.c
bhyvegc.h
bhyverun.c
bhyverun.h
block_if.c usr.sbin: Automated cleanup of cdefs and other formatting 2023-11-26 22:24:01 -07:00
block_if.h
bootrom.c
bootrom.h
config.c
config.h
console.c
console.h
debug.h
gdb.c
gdb.h
hda_codec.c
hda_reg.h
hdac_reg.h
iov.c
iov.h
ipc.h
libslirp.h
mem.c
mem.h
mevent.c
mevent.h
mevent_test.c
net_backend_netgraph.c
net_backend_netmap.c
net_backend_slirp.c
net_backends.c
net_backends.h
net_backends_priv.h
net_utils.c
net_utils.h
pci_ahci.c
pci_e82545.c
pci_emul.c
pci_emul.h
pci_fbuf.c
pci_hda.c
pci_hda.h
pci_hostbridge.c
pci_irq.h
pci_nvme.c
pci_passthru.c
pci_passthru.h
pci_uart.c
pci_virtio_9p.c
pci_virtio_block.c
pci_virtio_console.c
pci_virtio_input.c
pci_virtio_net.c
pci_virtio_rnd.c
pci_virtio_scsi.c
pci_xhci.c bhyve: improve input validation in pci_xhci 2024-09-19 08:26:07 -04:00
pci_xhci.h
pctestdev.c
pctestdev.h
qemu_fwcfg.c
qemu_fwcfg.h
qemu_loader.c
qemu_loader.h
rfb.c
rfb.h
rtc_pl031.c
rtc_pl031.h
smbiostbl.c
smbiostbl.h
snapshot.c
snapshot.h
sockstream.c
sockstream.h
tpm_device.c
tpm_device.h
tpm_emul.h
tpm_emul_passthru.c
tpm_intf.h
tpm_intf_crb.c
tpm_ppi.h
tpm_ppi_qemu.c
uart_backend.c
uart_backend.h
uart_emul.c
uart_emul.h
uart_pl011.c
usb_emul.c
usb_emul.h
usb_mouse.c
virtio.c
virtio.h
vmexit.h
vmgenc.c
vmgenc.h