| OpenBSD has a use-after-free allowing local privilege escalation to root(nvd.nist.gov) | |
| 269 points by linggen 22 hours ago | 144 comments | |
tl;dr: OpenBSD through 7.9 contains a use-after-free vulnerability in sys/kern/sysv_sem.c that enables local privilege escalation to root. The flaw occurs during a context switch after tsleep in sys_semget(). Notably, the referenced disclosure links to OpenAI's "Patch the Planet" initiative, suggesting the bug was discovered via AI-assisted vulnerability research. | |
HN Discussion:
| |