CVE-2022-23091 Memory disclosure by stale virtual memory mapping

2024-02-1505:11:35

freebsd

github.com

cve-2022-23091

memory disclosure

virtual memory

AI Score

6.5

Confidence

Low

EPSS

Percentile

9.0%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

A particular case of memory sharing is mishandled in the virtual memory system. This is very similar to SA-21:08.vm, but with a different root cause.

An unprivileged local user process can maintain a mapping of a page after it is freed, allowing that process to read private data belonging to other processes or the kernel.

CNA Affected

[
  {
    "vendor": "FreeBSD",
    "modules": [
      "vm"
    ],
    "product": "FreeBSD",
    "versions": [
      {
        "status": "affected",
        "version": "13.1-RELEASE",
        "lessThan": "p1",
        "versionType": "release"
      },
      {
        "status": "affected",
        "version": "13.0-RELEASE",
        "lessThan": "p12",
        "versionType": "release"
      },
      {
        "status": "affected",
        "version": "12.3-RELEASE",
        "lessThan": "p6",
        "versionType": "release"
      }
    ],
    "defaultStatus": "unknown"
  }
]