Critical Ping Vulnerability Allows Remote Attackers to Take Over FreeBSD Systems


In order to fix a security flaw affecting the ping module that may potentially be used to crash the application or cause remote code execution, the maintainers of the FreeBSD operating system have released patches.

The CVE-2022-23093 issue, which affects all supported versions of FreeBSD, is related to a stack-based buffer overflow vulnerability in the ping service. An alert released the previous week stated that “ping reads raw IP packets from the network to process responses in the pr pack() method.”

Read More…