all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Security Advisory for FreeBSD Ping Stack-Based Overflow CVE-2022-23093

Add to bookmarks
Dec. 10, 2022, 1:19 a.m. | Jithin Nair

Security Boulevard securityboulevard.com

Background


On Dec 01, 2022, a stack overflow vulnerability CVE-2022-23093 was found in the FreeBSD operating system (all supported versions) ping utility. The issue is a buffer overflow vulnerability affecting the “pr_pack()” function in ping(8). The flaw can be leveraged to cause a stack overflow, which could lead to a crash or trigger remote code execution in ping.


What is the issue?


The following vulnerability details were published in the FreeBSD security advisory


Ping reads raw IP packets from the …

advisory cve cve-2022-23093 freebsd overflow ping security security advisory

Visit resource

More from securityboulevard.com / Security Boulevard

USENIX Security ’23 – Intender: Fuzzing Intent-Based Networking with Intent-State Transition Guidance 18 hours ago | securityboulevard.com
access authors channel conference +20
What is an IS (RBI) Audit? 1 day, 2 hours ago | securityboulevard.com
address audit banking banks +27
Understanding Credential Phishing 1 day, 10 hours ago | securityboulevard.com
attackers breach breaches ceo +23
Adaptive DDoS Defense’s Value in the Security Ecosystem 1 day, 11 hours ago | securityboulevard.com
adaptive ddos analytics & intelligence and response attack +24
Understanding Business Email Compromise (BEC) 1 day, 11 hours ago | securityboulevard.com
attackers attacks bec business +17
Risk vs. Threat vs. Vulnerability: What is the difference? 1 day, 12 hours ago | securityboulevard.com
ciso suite click cyber lingo cyber security risks +11
Compromising ByteDance’s Rspack using GitHub Actions Vulnerabilities 1 day, 13 hours ago | securityboulevard.com
actions attacker bytedance bytedance rspack +16
Impart Security: Leading the Charge in API Security with SOC 2 Type 2 Certification | … 1 day, 14 hours ago | securityboulevard.com
api api security certification charge +7
Senator Calls for FTC, SEC Probe Into UnitedHealth’s ‘Negligence’ in Breach 1 day, 14 hours ago | securityboulevard.com
attack board breach ceo +30

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com