CVE-2026-49414 | The ELF image activator cleared per-process ASLR preference …

Description

The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that computes the PIE base address, rather than before. As a result, a user-requested ASLR disable was still in effect at the point where the base address was chosen. An unprivileged local user can disable ASLR for a setuid PIE binary by calling procctl(2) before execve(2). This makes exploitation of any separate memory corruption vulnerability in that binary significantly easier.

Metadata

CVE ID: CVE-2026-49414
State: PUBLISHED
Assigner: freebsd
Reserved: 2026-05-29 20:24 UTC
Published: 2026-06-27 09:22 UTC
Last updated: 2026-06-27 09:22 UTC
Primary CWE: CWE-179
CWE-179: Incorrect Behavior Order: Early Validation
Vendor / Product: FreeBSD / FreeBSD
Sources: cve.org · NVD

Severity & Metrics

No CVSS data available.

Affected products (1)

Vendor	Product	Platform	Versions
FreeBSD	FreeBSD	—	15.0-RELEASE < p10, 14.4-RELEASE < p6, 14.3-RELEASE < p15

Weakness (CWE)

CWE	Source	Description
CWE-179	cna	CWE-179: Incorrect Behavior Order: Early Validation

References (1)

https://security.freebsd.org/advisories/FreeBSD-SA-26:32.elf.asc