CVE-2026-39457

Name of the Vulnerable Software and Affected Versions libnv (affected versions not specified)

Description When exchanging data over a socket, the software uses the select() function to wait for data. It fails to verify if the provided socket descriptor exceeds the file descriptor set size limit of FD SETSIZE (1024). An attacker capable of forcing the application to allocate large file descriptors can trigger stack corruption. If the target application is setuid-root, this may lead to local privilege escalation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.