Re: [oss-security] CVE-2026-45250: FreeBSD setcred(2) stack overflow -> local privilege escalation (FatGid)

Steffen Nurpmeso Thu, 21 May 2026 16:36:43 -0700

Przemyslaw Frasunek wrote in
 <[email protected]>:
 |A kernel stack buffer overflow exists in the setcred(2) system call
 |introduced in FreeBSD 14.x.  The overflow occurs before any privilege
 |check, allowing any unprivileged local user to trigger anything from a
 |kernel panic to full local privilege escalation.
 ...
 |   Not affected:
 |         FreeBSD main (silently fixed in commit 000d5b5, 2025-11-27)


You mean 4cd93df95e (2025-11-14), then got fixed by the mentioned
due to some other problem.

--steffen
|
|Der Kragenbaer,                The moon bear,
|der holt sich munter           he cheerfully and one by one
|einen nach dem anderen runter  wa.ks himself off
|(By Robert Gernhardt)

Re: [oss-security] CVE-2026-45250: FreeBSD setcred(2) stack overflow -> local privilege escalation (FatGid)

Reply via email to