Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a machine, the ability to write almost unlimited amounts of unfiltered data into the process heap. https://gitlab.com/procps-ng/procps
So far nobody knows nothing, not even the upstream and the reporter hasn't sent any analysis yet, so there is no information on where the issue is and how it can be fixed. https://gitlab.com/procps-ng/procps/-/issues/297#note_1496932093
Created procps-ng tracking bugs for this issue: Affects: fedora-all [bug 2230186]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:6705 https://access.redhat.com/errata/RHSA-2023:6705
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:7187 https://access.redhat.com/errata/RHSA-2023:7187
References: https://www.freelists.org/post/procps/ps-buffer-overflow-CVE-20234016 https://gitlab.com/procps-ng/procps/-/issues/297 Upstream Commit: https://gitlab.com/procps-ng/procps/-/commit/2c933ecba3bb1d3041a5a7a53a7b4078a6003413