Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multiple issues in ctl(4) CAM Target Layer
Vulnerability Description
The function ctl_write_buffer incorrectly set a flag which resulted in a kernel Use-After-Free when a command finished processing. Malicious software running in a guest VM that exposes virtio_scsi can exploit the vulnerabilities to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process. A malicious iSCSI initiator could achieve remote code execution on the iSCSI target host.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
FreeBSD 资源管理错误漏洞
Vulnerability Description
FreeBSD是FreeBSD基金会的一套类Unix操作系统。 FreeBSD 存在资源管理错误漏洞,该漏洞源于 ctl_write_buffer 函数错误地设置了一个标志,导致命令完成处理时出现内核释放后重用。
CVSS Information
N/A
Vulnerability Type
N/A