Use-After-Free Vulnerability in OpenBSD Kernel Component
CVE-2026-57589
7.4HIGH
What is CVE-2026-57589?
A vulnerability in the OpenBSD kernel, specifically within the sysv_sem.c component, allows for a use-after-free condition. This issue arises during a context switch after a tsleep call in the sys_semget() function. Exploitation of this vulnerability can lead to local privilege escalation, granting unauthorized root access to an attacker. Users of OpenBSD versions up to 7.9 are advised to assess their systems and apply necessary patches.
Affected Version(s)
OpenBSD 0 <= 7.9