Stack Corruption Risk in libnv Affecting FreeBSD Applications
CVE-2026-39457

Currently unrated

Key Information:

Vendor: FreeBSD
Status: FreeBSD
Vendor: CVE Published:; 30 April 2026

What is CVE-2026-39457?

The libnv library encounters a vulnerability during socket data exchanges, as it fails to ensure that socket descriptors do not exceed the FD_SETSIZE limit of 1024 when using the select() system call. This oversight permits attackers to exploit the allocation of excessive file descriptors, leading to potential stack corruption. In scenarios where the application has root privileges (setuid-root), this could allow an attacker to escalate privileges and gain unauthorized access to sensitive resources within the system.

Affected Version(s)

FreeBSD 15.0-RELEASE

FreeBSD 14.4-RELEASE

FreeBSD 14.3-RELEASE

References

https://security.freebsd.org/advisories/FreeBSD-SA-26:16....

vendor-advisory

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2026
Vulnerability Reserved
Apr 28, 2026

Credit

Joshua Rogers of AISLE Research Team

CVE-2026-39457 Data

JSON