CVE-2022-23089 Information

Description

When dumping core and saving process information proc_getargv() might return an sbuf which have a sbuf_len() of 0 or -1 which is not properly handled.

An out-of-bound read can happen when user constructs a specially crafted ps_string which in turn can cause the kernel to crash.

Reference

https://security.freebsd.org/advisories/FreeBSD-SA-22:09.elf.asc