Get a Quote (408) 943-4100

Commercial Support

TrueNAS.com Software Systems Company Community Security iX Portal Download

Docs Navigation

TrueNAS CORE TrueNAS Enterprise TrueNAS SCALE TrueCommand Help Me Choose FreeNAS

Systems Overview M-Series X-Series R-Series Mini Series

Blog In the News TrueNAS Store iXsystems Careers

TrueNAS GitHub Community Forum Discord TrueNAS Merch Store

Application Asigra TrueNAS Solution Backup Big Data Cloud Multimedia Virtualization

Industry Education Finance Government Healthcare High-Tech Media & Entertainment

Support Documentation TrueNAS Security Blog Case Studies White Papers Solution Briefs iX Portal Plugins & Apps ZFS

Download TrueNAS CORE

Download TrueNAS SCALE

Get TrueNAS Enterprise

FreeBSD xen

contrib

TrueNAS 12.0

FreeBSD-SA-21:02.xenoom : Xen guests can triger backend Out Of Memory

2021-01-29

Versions Affected : All versions prior to TrueNAS 12.0-U2

Description

Some OSes (including Linux, FreeBSD, and NetBSD) are processing watch events using a single thread.

If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbound, a guest may be able to trigger a OOM in the backend. As a result a malicious guest can trigger an OOM in backends.

Workaround

No workaround is available. FreeBSD systems not using Xen are not affected.

Mitigation

Upgrade to TrueNAS 12.0-U2 or later.

Commit

Further information

FreeBSD Security Advisory Entry