EUVD-2002-1483

Malware in sbrugna...

CVE-2025-39756

CVE-2025-39756 is a Linux kernel issue where extremely high nr_open values (e.g., 1073741816) can trigger massive file descriptor table allocations that exceed INT_MAX, causing a kernel warning and impractical memory requests (>8GB) during operations near the FD limit. The root cause involves ...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a file descriptor table allocation that may exceed the INTMAX limit, potentially resulting in a memory allocatio...

AZL-54768 CVE-2024-56712 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix memory leak on last exportudmabuf error path In exportudmabuf, if dmabuffd fails because the FD table is full, a dmabuf owning the udmabuf has already been created; but the error handling in udmabufcreate will tear...

UBUNTU-CVE-2024-56712

In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix memory leak on last exportudmabuf error path In exportudmabuf, if dmabuffd fails because the FD table is full, a dmabuf owning the udmabuf has already been created; but the error handling in udmabufcreate will tear...

SUSE CVE-2024-42265

In the Linux kernel, the following vulnerability has been resolved: protect the fetch of -fdfd in dodup2 from mispredictions both callers have verified that fd is not greater than -maxfds; however, misprediction might end up with tofree = fdt-fdfd; being speculatively executed. That's wrong for t...

CVE-2022-48771

The CVE-2022-48771 issue affects the Linux kernel drm/vmwgfx: a failing usercopy of the fence_rep object can leave a stale file descriptor entry because put_unused_fd() isn’t released; this can let userland reference a dangling file descriptor and enable use-after-free scenarios. The fix defers t...

Kernel update: Virtuozzo ReadyKernel patch 48.0 for Virtuozzo 7.0.7

The cumulative Virtuozzo ReadyKernel patch was updated with stability fixes. The patch applies to the Virtuozzo 7.0 kernel 3.10.0-693.17.1.vz7.43.10 7.0.7. Vulnerability id: PSBM-79229 If a container used its own network namespace for tun devices, suspend/resume and live migration of said contain...

Design/Logic Flaw

Monkey HTTP Server before 1.5.3, when the File Descriptor Table FDT is enabled and custom error messages are set, allows remote attackers to cause a denial of service file descriptor consumption via an HTTP request that triggers an error message...

CVE-2002-0766

CVE-2002-0766 affects OpenBSD 2.9–3.1. Local users can exhaust the kernel’s file descriptor table and gain root by filling fds and closing 0, 1, or 2 before executing a privileged process, in a scenario not correctly handled when an alternate descriptor cannot be opened. The issue is a race in fd...