Socket Descriptor Leak in FreeBSD Blocklistd Affects Functionality and Performance
CVE-2026-2261
What is CVE-2026-2261?
The blocklistd service in FreeBSD suffers from a programming error that leads to leaking socket descriptors for each adverse event report received. This issue results in limited functionality, where once a threshold of leaked sockets is reached, blocklistd fails to execute its helper script due to a crash caused by a null pointer dereference. Additionally, the service becomes incapable of processing new adverse events, compromising its ability to block malicious addresses. As adverse events frequently occur during regular operations, this vulnerability can gradually degrade performance, leading to a systemic slowdown until the service is restarted. Attackers might exploit this flaw by flooding the system with adverse events from multiple IP addresses, effectively disabling blocklistd and rendering it unable to function properly.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
FreeBSD 15.0-RELEASE