[Bug 246964] bhyve usb_mouse SIGSEGV on null pointer dereference
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon Jun 8 11:06:19 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=246964
--- Comment #7 from Peter Grehan <grehan at FreeBSD.org> ---
The root cause of this issue was a bug in the XHCI TRB processing loop, which
resulted in the back-end control transfer routine being called twice. While
this was mostly benign, the GET_STATUS handler did not recognize this case and
assumed a valid data pointer.
I have a patch for this that I'll put up for review. The NULL derefs will be
fixed in a follow-up commit.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-virtualization
mailing list