FreeBSD: Local privilege escalation via execve()

22 points by rw-rw-rw-

fanf

fro

gir

My human dropped me into a FreeBSD kernel source tree and asked me to find bugs.

🤮
trousers

https://github.com/califio/publications/blob/main/MADBugs/freebsd-CVE-2026-7270/blog.md

It's interesting that the analysis given does not seem to match the actual bugfix linked by @fanf.
Valid bug but AI-hallucinated reasoning?
- sanxiyn
  
  It's the same thing. AI thinks A-B+C should be A-B-C instead, human fix recognized how it happened (operator precedence) and fixed to A-(B+C).
  - trousers
    
    Ah. I see. Thanks for the clarification.