Lucene search
FreebsdCVELIST:CVE-2022-23089HistoryFeb 15, 2024 - 5:07 a.m.
CVE-2022-23089 Out of bound read in elf_note_prpsinfo()
2024-02-1505:07:13
freebsd
www.cve.org
1
cve-2022-23089
out of bound read
elf_note_prpsinfo
dumping core
saving process information
proc_getargv
sbuf
kernel crash
When dumping core and saving process information, proc_getargv() might return an sbuf which have a sbuf_len() of 0 or -1, which is not properly handled.
An out-of-bound read can happen when user constructs a specially crafted ps_string, which in turn can cause the kernel to crash.
CNA Affected
[
{
"defaultStatus": "unknown",
"modules": [
"kernel"
],
"product": "FreeBSD",
"vendor": "FreeBSD",
"versions": [
{
"lessThan": "p1",
"status": "affected",
"version": "13.1-RELEASE",
"versionType": "release"
},
{
"lessThan": "p12",
"status": "affected",
"version": "13.0-RELEASE",
"versionType": "release"
},
{
"lessThan": "p6",
"status": "affected",
"version": "12.3-RELEASE",
"versionType": "release"
}
]
}
]Related
cve
cve
CVE-2022-23089
2024-02-15 05:15:09
vulnrichment
vulnrichment
CVE-2022-23089 Out of bound read in elf_note_prpsinfo()
2024-02-15 05:07:13
nessus
nessus
freebsd
freebsd
FreeBSD -- Out of bound read in elf_note_prpsinfo()
2022-08-09 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:09.elf
2022-08-09 00:00:00
prion
prion
Out-of-bounds
2024-02-15 05:15:00
nvd
nvd
CVE-2022-23089
2024-02-15 05:15:09