Signal Delivery Bypass in FreeBSD's Capsicum Implementation
CVE-2026-45259

Currently unrated

Key Information:

Vendor: FreeBSD
Status: FreeBSD
Vendor: CVE Published:; 27 June 2026

What is CVE-2026-45259?

The implementation of the sigqueue(2) function in FreeBSD's Capsicum framework allows a process running in capability mode to send signals to other processes irresponsibly, circumventing intended restrictions. This vulnerability arises because the kern_sigqueue function neglects to verify if the signal delivery is confined to the calling process's own PID. As a result, a compromised process operating within a Capsicum sandbox could use this loophole to disrupt other processes by sending critical signals like SIGKILL or SIGSTOP. This scenario presents a significant risk, especially for processes run by the same user or superuser sandboxed processes, undermining the integrity and isolation that Capsicum aims to enforce.

Affected Version(s)

FreeBSD 15.0-RELEASE

FreeBSD 14.4-RELEASE

FreeBSD 14.3-RELEASE

References

https://security.freebsd.org/advisories/FreeBSD-SA-26:28....

vendor-advisory

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 27, 2026
Vulnerability Reserved
May 11, 2026

Credit

Ed Maste

CVE-2026-45259 Data

JSON