OpenBSD versions up to 7.9 contain a critical use-after-free vulnerability in the System V semaphore implementation (sys/kern/sysv_sem.c). This flaw allows local attackers to escalate privileges to root, as detailed in CVE-2026-57589.
Background
System V IPC mechanisms like semaphores are legacy interfaces still supported in many Unix-like systems for process synchronization. Local privilege escalation vulnerabilities in kernel components are particularly severe as they bypass standard user-level access controls.
- Source
- Lobsters
- Published
- Jul 8, 2026 at 09:02 AM
- Score
- 8.0 / 10