Security Advisory

CVE-2022-23089

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-15 05:07:13

Last updated 2025-03-13 21:52:54

Assigner freebsd

State PUBLISHED

Description

When dumping core and saving process information, proc_getargv() might return an sbuf which have a sbuf_len() of 0 or -1, which is not properly handled. An out-of-bound read can happen when user constructs a specially crafted ps_string, which in turn can cause the kernel to crash.

← Browse all CVEs View on cve.org ↗