GCVE - cpe:2.3:o:freebsd:freebsd:13.0:p11:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:13.0:p11:*:*:*:*:*:*

part: o version: 13.0 update: p11

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/freebsd/freebsd-src`	purl2cpe	2026-06-01 10:12:45.165342

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-23092`	vulnerable	2026-06-08 05:40:56.282098	Missing bounds check in 9p message handling The implementation of lib9p's handling of RWALK messages was missing a bounds check needed when unpacking the message contents. The missing check means that the receipt of a specially crafted message will cause lib9p to overwrite unrelated memory. The bug can be triggered by a malicious bhyve guest kernel to overwrite memory in the bhyve(8) process. This could potentially lead to user-mode code execution on the host, subject to bhyve's Capsicum sandbox. Published: 2024-02-15T05:13:50.356Z Updated: 2025-02-13T16:29:03.221Z Open on db.gcve.eu Reference links https://security.freebsd.org/advisories/FreeBSD-SA-22:12.lib9p.asc https://security.netapp.com/advisory/ntap-20240415-0009/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-23091`	vulnerable	2026-06-08 05:40:56.280296	Memory disclosure by stale virtual memory mapping A particular case of memory sharing is mishandled in the virtual memory system. This is very similar to SA-21:08.vm, but with a different root cause. An unprivileged local user process can maintain a mapping of a page after it is freed, allowing that process to read private data belonging to other processes or the kernel. Published: 2024-02-15T05:11:35.101Z Updated: 2025-02-13T16:29:02.596Z Open on db.gcve.eu Reference links https://security.freebsd.org/advisories/FreeBSD-SA-22:11.vm.asc https://security.netapp.com/advisory/ntap-20240415-0008/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-23090`	vulnerable	2026-06-08 05:40:56.279265	AIO credential reference count leak The aio_aqueue function, used by the lio_listio system call, fails to release a reference to a credential in an error case. An attacker may cause the reference count to overflow, leading to a use after free (UAF). Published: 2024-02-15T05:09:27.389Z Updated: 2025-03-28T23:57:52.965Z Open on db.gcve.eu Reference links https://security.freebsd.org/advisories/FreeBSD-SA-22:10.aio.asc https://security.netapp.com/advisory/ntap-20240415-0007/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-23089`	vulnerable	2026-06-08 05:40:56.275309	Out of bound read in elf_note_prpsinfo() When dumping core and saving process information, proc_getargv() might return an sbuf which have a sbuf_len() of 0 or -1, which is not properly handled. An out-of-bound read can happen when user constructs a specially crafted ps_string, which in turn can cause the kernel to crash. Published: 2024-02-15T05:07:13.996Z Updated: 2025-03-13T21:52:54.797Z Open on db.gcve.eu Reference links https://security.freebsd.org/advisories/FreeBSD-SA-22:09.elf.asc https://security.netapp.com/advisory/ntap-20240415-0006/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.