AI Score
Confidence
Low
EPSS
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
When dumping core and saving process information, proc_getargv() might return an sbuf which have a sbuf_len() of 0 or -1, which is not properly handled.
An out-of-bound read can happen when user constructs a specially crafted ps_string, which in turn can cause the kernel to crash.
[
{
"vendor": "FreeBSD",
"modules": [
"kernel"
],
"product": "FreeBSD",
"versions": [
{
"status": "affected",
"version": "13.1-RELEASE",
"lessThan": "p1",
"versionType": "release"
},
{
"status": "affected",
"version": "13.0-RELEASE",
"lessThan": "p12",
"versionType": "release"
},
{
"status": "affected",
"version": "12.3-RELEASE",
"lessThan": "p6",
"versionType": "release"
}
],
"defaultStatus": "unknown"
}
]