Versions Affected : All verisons prior to FreeNAS 11.3-U5
A number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped.
From kernel mode a malicious guest can write to arbitrary host memory (with some constraints), affording the guest full control of the host.
No workaround is available.
- Upgrade to FreeNAS 11.3-U5 or later.
- FreeBSD Revision : r365780
- FreeNAS Commit : d7a0d0c
- FreeNAS Commit : 368ae3a
- JIRA Ticket : NAS-107090