CVE-2023-20869: 
NixOS vulnerability analysis and mitigation

A stack-based buffer-overflow vulnerability (CVE-2023-20869) was discovered in VMware Workstation (17.x) and VMware Fusion (13.x), specifically affecting the functionality for sharing host Bluetooth devices with virtual machines. The vulnerability was reported by STAR Labs during the Pwn2Own 2023 Security Contest and was publicly disclosed on April 25, 2023. VMware has evaluated this vulnerability as Critical with a CVSS v3.1 base score of 9.3 (VMware Advisory).

The vulnerability exists within the UHCI component and stems from inadequate validation of user-supplied data length before copying it to a fixed-length stack-based buffer. The issue has been assigned a CVSS v3.1 base score of 8.2 with the vector string CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H, indicating local access requirements but high potential impact (ZDI Advisory).

The vulnerability allows attackers to execute code as the virtual machine's VMX process running on the host, potentially leading to complete compromise of the hypervisor. This could result in unauthorized code execution with elevated privileges in the context of the hypervisor (VMware Advisory).

VMware has released security updates to address this vulnerability. Users should update VMware Workstation to version 17.0.2 and VMware Fusion to version 13.0.2. These updates are documented in KB91760 (VMware Advisory).