[Midnightbsd-cvs] [MidnightBSD/src] c587c2: The missing check allows an unprivileged local use...

Lucas Holt noreply at github.com
Wed Jun 10 19:16:35 EDT 2026


  Branch: refs/heads/stable/4.0
  Home:   https://github.com/MidnightBSD/src
  Commit: c587c24394cd1d6dbe4b9e3f48367becf16e2b15
      https://github.com/MidnightBSD/src/commit/c587c24394cd1d6dbe4b9e3f48367becf16e2b15
  Author: Lucas Holt <luke at foolishgames.com>
  Date:   2026-06-10 (Wed, 10 Jun 2026)

  Changed paths:
    M sys/kern/kern_thr.c

  Log Message:
  -----------
  The missing check allows an unprivileged local user who knows or can guess a
target's process and thread IDs to send any signal to a process they would
not normally be permitted to signal, including processes owned by other
users or by root.  The same check enforces jail boundaries, so a jailed
process can signal processes on the host or in other jails.  Thread IDs are
allocated globally and sequentially, and so can be discovered by brute force
with no visibility into the target.

An attacker can stop or terminate arbitrary processes, including critical
system daemons, resulting in a Denial of Service (DoS).

Obtained from: FreeBSD



To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications


More information about the Midnightbsd-cvs mailing list