FreeBSD bhyve XHCI Out-of-Bounds Read Vulnerability (CVE-2024-41721) Advisory

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability Description: - Name: FreeBSD-SA-24:15.bhyve - Type: Core module - Module: bhyve - Impact: Out-of-bounds read vulnerability in the XHCI USB controller emulation within bhyve(8) hypervisor. 2. Affected Versions: - All supported FreeBSD versions. 3. Fix Timestamps: - 2024-09-19 12:40:17 UTC (stable/14, 14.1-STABLE) - 2024-09-19 13:30:18 UTC (relenge/14.1, 14.1-RELEASE-p5) - 2024-09-19 13:30:44 UTC (relenge/14.0, 14.0-RELEASE-p11) - 2024-09-19 12:48:52 UTC (stable/13, 13.4-STABLE) - 2024-09-19 13:35:06 UTC (relenge/13.4, 13.4-RELEASE-p1) - 2024-09-19 13:35:37 UTC (relenge/13.3, 13.3-RELEASE-p7) 4. CVE ID: CVE-2024-41721 5. Impact: - A malicious, privileged software running in a guest VM can exploit this vulnerability to cause hypervisor process crashes or achieve code execution on the host. - bhyve runs within the Capsicum sandbox, limiting malicious code to the capabilities available to the bhyve process. 6. Solution: - Upgrade to the stable or security release (relenge) branches for affected systems. - Reboot guest operating systems using XHCI-emulated USB devices. 7. Fix Details: - Fixes applied to corresponding Git commit hashes in stable and release branches. 8. Reference Links: - FreeBSD Security Advisory: - CVE ID: This information helps users understand the vulnerability details, affected scope, and how to remediate and prevent exploitation.

Goal Reached Thanks to every supporter — we hit 100%!

FreeBSD bhyve XHCI Out-of-Bounds Read Vulnerability (CVE-2024-41721) Advisory