CVE-2022-23090 AIO credential reference count leak

2024-02-1505:09:27

freebsd

www.cve.org

cve-2022-23090

lio_listio system call

reference count

use after free

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

The aio_aqueue function, used by the lio_listio system call, fails to release a reference to a credential in an error case.

An attacker may cause the reference count to overflow, leading to a use after free (UAF).

CNA Affected

[
  {
    "defaultStatus": "unknown",
    "modules": [
      "kernel"
    ],
    "product": "FreeBSD",
    "vendor": "FreeBSD",
    "versions": [
      {
        "lessThan": "p1",
        "status": "affected",
        "version": "13.1-RELEASE",
        "versionType": "release"
      },
      {
        "lessThan": "p12",
        "status": "affected",
        "version": "13.0-RELEASE",
        "versionType": "release"
      },
      {
        "lessThan": "p6",
        "status": "affected",
        "version": "12.3-RELEASE",
        "versionType": "release"
      }
    ]
  }
]