FreeBSD Security Advisory – FreeBSD-SA-18:14.bhyve

FreeBSD Security Advisory – Insufficient bounds checking in one of the device models provided by bhyve(8) can permit a guest operating system to overwrite memory in the bhyve(8) processing possibly permitting arbitrary code execution. A guest OS using a firmware image can cause the bhyve process to crash, or possibly execute arbitrary code on the host as root.

Link: https://packetstormsecurity.com/files/150650/FreeBSD-SA-18.14.bhyve.txt