Lucene search
K

10 matches found

Vulnrichment
Vulnrichment
added 2026/05/21 9:20 a.m.7 views

CVE-2026-39461 select(2) file descriptor set overflow causes stack overflow

libcasper3 communicates with helper processes via UNIX domain sockets, and uses the select2 system call to wait for data to become available. However, it does not verify that its socket descriptor fits within select2's descriptor set size limit of FDSETSIZE 1024. An attacker able to cause an...

5.8AI score0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/21 9:20 a.m.41 views

CVE-2026-39461 select(2) file descriptor set overflow causes stack overflow

libcasper3 communicates with helper processes via UNIX domain sockets, and uses the select2 system call to wait for data to become available. However, it does not verify that its socket descriptor fits within select2's descriptor set size limit of FDSETSIZE 1024. An attacker able to cause an...

0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/09 4:29 p.m.19 views

CVE-2026-39959 Tmds.DBus: malicious D-Bus peers can spoof signals, exhaust file descriptor resources, and cause denial of service

Tmds.DBus provides .NET libraries for working with D-Bus from .NET. Tmds.DBus and Tmds.DBus.Protocol are vulnerable to malicious D-Bus peers. A peer on the same bus can spoof signals by impersonating the owner of a well-known name, exhaust system resources or cause file descriptor spillover by...

7.1CVSS0.00124EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:30 a.m.8 views

CVE-2019-5603

In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r350263, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, system calls operating on file descriptors as part of mqueuefs did not properly release the reference allowing a...

7.8CVSS7AI score0.00623EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:45 a.m.3 views

SUSE CVE-2012-3410

Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properly handled when expanding the /dev/fd prefix...

4.6CVSS9.3AI score0.00413EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2019/07/26 12:16 a.m.13 views

CVE-2019-5603

Removed by vendor...

7.8CVSS7.5AI score0.00623EPSS
Exploits0
Cvelist
Cvelist
added 2018/02/27 10:0 p.m.28 views

CVE-2014-10071

In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the "& fd" syntax...

7.6AI score0.02744EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/06/18 12:0 a.m.24 views

Debian Security Advisory DSA 2628-1 (nss-pam-ldapd - buffer overflow)

Garth Mollett discovered that a file descriptor overflow issue in the use of FDSET in nss-pam-ldapd, which provides NSS and PAM modules for using LDAP as a naming service, can lead to a stack-based buffer overflow. An attacker could, under some circumstances, use this flaw to cause a process that...

6.8CVSS0.5AI score0.03582EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/04/20 12:0 a.m.24 views

Mandriva Linux Security Advisory : nss-pam-ldapd (MDVSA-2013:106)

Updated nss-pam-ldapd packages fixes the following security vulnerability : Garth Mollett discovered that a file descriptor overflow issue in the use of FDSET in nss-pam-ldapd can lead to a stack-based buffer overflow. An attacker could, under some circumstances, use this flaw to cause a process...

6.8CVSS6.6AI score0.03582EPSS
Exploits0References1
NVD
NVD
added 2003/04/02 5:0 a.m.21 views

CVE-2002-1500

Buffer overflow in 1 mrinfo, 2 mtrace, and 3 pppd in NetBSD 1.4.x through 1.6 allows local users to gain privileges by executing the programs after filling the file descriptor tables, which produces file descriptors larger than FDSETSIZE, which are not checked by FDSET...

7.2CVSS6.8AI score0.00408EPSS
Exploits0References3
Rows per page
Query Builder