FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Memory disclosure by stale virtual memory mapping

Affected packages
13.1 <= FreeBSD-kernel < 13.1_1
13.0 <= FreeBSD-kernel < 13.0_12
12.3 <= FreeBSD-kernel < 12.3_6


VuXML ID 02fb9764-1893-11ed-9b22-002590c1f29c
Discovery 2022-08-09
Entry 2022-08-10

Problem Description:

A particular case of memory sharing is mishandled in the virtual memory system. This is very similar to SA-21:08.vm, but with a different root cause.


An unprivileged local user process can maintain a mapping of a page after it is freed, allowing that process to read private data belonging to other processes or the kernel.


CVE Name CVE-2022-23091
FreeBSD Advisory SA-22:11.vm