K 10
svn:author
V 6
emaste
K 8
svn:date
V 27
2022-04-06T03:06:25.065379Z
K 7
svn:log
V 619
netmap: Fix TOCTOU vulnerability in nmreq_copyin

The total size of the user-provided nmreq was first computed and then
trusted during the copyin. This might lead to kernel memory corruption
and escape from jails/containers.

Reported by: Lucas Leong (@_wmliang_) of Trend Micro Zero Day Initiative
Security: CVE-2022-23084
MFC after:	3 days

(cherry picked from commit 393729916564ed13f966e09129a24e6931898d12)
(cherry picked from commit 6fa8af618475024262fc99b0f0e6c2aa0e1340fe)

Approved by:	so
Security:	FreeBSD-SA-22:04.netmap

Git Hash:   5e67ca45e9a37180783f93faf0801c5c86366b9f
Git Author: vmaffione@FreeBSD.org
END