Time-of-check Time-of-use (TOCTOU) Race Condition in FreeBSD - CVE-2026-49415
Published: July 1, 2026
FreeBSD
Detailed vulnerability description
The vulnerability allows a local user to escalate privileges.
The vulnerability exists due to a time-of-check time-of-use race condition in execve(2) when executing a set-user-ID binary. A local user can access and modify the target process memory via procfs or linprocfs during the credential transition window to escalate privileges.
The issue occurs because the new virtual address space is installed before process credentials are updated.