K 10 svn:author V 9 vmaffione K 8 svn:date V 27 2022-03-30T22:10:28.137216Z K 7 svn:log V 499 netmap: Fix TOCTOU vulnerability in nmreq_copyin The total size of the user-provided nmreq was first computed and then trusted during the copyin. This might lead to kernel memory corruption and escape from jails/containers. Reported by: Lucas Leong (@_wmliang_) of Trend Micro Zero Day Initiative Security: CVE-2022-23084 MFC after: 3 days (cherry picked from commit 393729916564ed13f966e09129a24e6931898d12) Git Hash: 725c70d8153f4bddf95bdd07e2c7b4b9399643f6 Git Author: vmaffione@FreeBSD.org END