Versions Affected : All verisons prior to FreeNAS 11.3-U?


Description

USB Human Interface Device (HID) descriptors may push/pop the current state to allow description of items residing in a so-called union.

FreeBSD supports 4 such pop levels. If the push/pop level is not restored within the processing of the same HID item, an invalid memory location may be used for subsequent HID item processing.


Workaround

Setting “sysctl hw.usb.disable_enumeration=1” disables USB device enumeration preventing the error from occurring.


Mitigation

  • Upgrade to FreeNAS 11.3-U4.1 or later.

Commit


Further information