vulnerability
FreeBSD: VID-27d39055-b61b-11ec-9ebc-1c697aa5a594 (CVE-2022-23085): FreeBSD -- Potential jail escape vulnerabilities in netmap
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:M/C:C/I:C/A:C) | Apr 7, 2022 | Nov 4, 2022 | Dec 10, 2025 |
Severity
6
CVSS
(AV:L/AC:L/Au:M/C:C/I:C/A:C)
Published
Apr 7, 2022
Added
Nov 4, 2022
Modified
Dec 10, 2025
Description
Problem Description: The total size of the user-provided nmreq to nmreq_copyin() was first computed and then trusted during the copyin. This time-of-check to time-of-use bug could lead to kernel memory corruption. [CVE-2022-23084] A user-provided integer option was passed to nmreq_copyin() without checking if it would overflow. This insufficient bounds checking could lead to kernel memory corruption. [CVE-2022-23085] Impact: On systems configured to include netmap in their devfs_ruleset, a privileged process running in a jail can affect the host environment.
Solutions
freebsd-upgrade-base-13_0-release-p11freebsd-upgrade-base-12_3-release-p5
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.