A particular case of memory sharing is mishandled in the virtual memory system. This is very similar to SA-21:08.vm, but with a different root cause.
An unprivileged local user process can maintain a mapping of a page after it is freed, allowing that process to read private data belonging to other processes or the kernel.
References
Link | Resource |
---|---|
https://security.freebsd.org/advisories/FreeBSD-SA-22:11.vm.asc | Vendor Advisory |
https://security.netapp.com/advisory/ntap-20240415-0008/ | Third Party Advisory |
https://security.freebsd.org/advisories/FreeBSD-SA-22:11.vm.asc | Vendor Advisory |
https://security.netapp.com/advisory/ntap-20240415-0008/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
04 Jun 2025, 22:09
Type | Values Removed | Values Added |
---|---|---|
First Time |
Freebsd
Freebsd freebsd |
|
References | () https://security.freebsd.org/advisories/FreeBSD-SA-22:11.vm.asc - Vendor Advisory | |
References | () https://security.netapp.com/advisory/ntap-20240415-0008/ - Third Party Advisory | |
CPE | cpe:2.3:o:freebsd:freebsd:13.0:rc5-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.1:rc1-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p7:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta3-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p5:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p11:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:beta1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p5:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.1:b2-p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p6:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.1:b1-p1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:12.3:p4:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p9:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta3:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p10:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc2:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:p8:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:rc5:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:beta1:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:13.0:-:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:* |
21 Nov 2024, 06:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://security.freebsd.org/advisories/FreeBSD-SA-22:11.vm.asc - | |
References | () https://security.netapp.com/advisory/ntap-20240415-0008/ - |
28 Oct 2024, 20:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-401 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.0 |
14 May 2024, 10:18
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary |
|
15 Feb 2024, 06:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-15 06:15
Updated : 2025-06-04 22:09
NVD link : CVE-2022-23091
Mitre link : CVE-2022-23091
CVE.ORG link : CVE-2022-23091
JSON object : View
Products Affected
freebsd
- freebsd
CWE
CWE-401
Missing Release of Memory after Effective Lifetime