VYPR

libcasper

by FreeBSD

CVEs (1)

  • CVE-2026-39461HigMay 21, 2026
    risk 0.57cvss 8.8epss 0.00

    libcasper(3) communicates with helper processes via UNIX domain sockets, and uses the select(2) system call to wait for data to become available. However, it does not verify that its socket descriptor fits within select(2)'s descriptor set size limit of FD_SETSIZE (1024). An…