CVE-2014-5336
published 2014-08-26CVE-2014-5336: Monkey HTTP Server before 1.5.3, when the File Descriptor Table (FDT) is enabled and custom error messages are set, allows remote attackers to cause a denial…
PriorityP416medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
2.45%
82.4th percentile
Monkey HTTP Server before 1.5.3, when the File Descriptor Table (FDT) is enabled and custom error messages are set, allows remote attackers to cause a denial of service (file descriptor consumption) via an HTTP request that triggers an error message.
Affected
61 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | >= 4.7.0 < 5.10.248 | 5.10.248 |
| linux | linux_kernel | >= 5.11.0 < 5.15.198 | 5.15.198 |
| linux | linux_kernel | >= 5.16.0 < 6.1.160 | 6.1.160 |
| linux | linux_kernel | >= 6.13.0 < 6.18.3 | 6.18.3 |
| linux | linux_kernel | >= 6.2.0 < 6.6.120 | 6.6.120 |
| linux | linux_kernel | >= 6.7.0 < 6.12.64 | 6.12.64 |
| monkey-project | monkey | <= 1.5.2 | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
| monkey-project | monkey | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
f2fs: fix to avoid updating zero-sized extent in extent cache
osv·2026-01-13
CVE-2025-68796 f2fs: fix to avoid updating zero-sized extent in extent cache
f2fs: fix to avoid updating zero-sized extent in extent cache
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to avoid updating zero-sized extent in extent cache
As syzbot reported:
F2FS-fs (loop0): __update_extent_tree_range: extent len is zero, type: 0, extent [0, 0, 0], age [0, 0]
------------[ cut here ]------------
kernel BUG at fs/f2fs/extent_cache.c:678!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:__update_extent_tree_range+0x13bc/0x1500 fs/f2fs/extent_cache.c:678
Call Trace:
f2fs_update_read_extent_cache_range+0x192/0x3e0 fs/f2fs/extent_cache.c:1085
f2fs_do_zer
GHSA
GHSA-g455-h64m-cw6x: Monkey HTTP Server before 1
ghsa_unreviewed·2022-05-13
CVE-2014-5336 [MEDIUM] CWE-20 GHSA-g455-h64m-cw6x: Monkey HTTP Server before 1
Monkey HTTP Server before 1.5.3, when the File Descriptor Table (FDT) is enabled and custom error messages are set, allows remote attackers to cause a denial of service (file descriptor consumption) via an HTTP request that triggers an error message.
Red Hat
kernel: f2fs: fix to avoid updating zero-sized extent in extent cache
vendor_redhat·2026-01-13
CVE-2025-68796 kernel: f2fs: fix to avoid updating zero-sized extent in extent cache
kernel: f2fs: fix to avoid updating zero-sized extent in extent cache
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to avoid updating zero-sized extent in extent cache
As syzbot reported:
F2FS-fs (loop0): __update_extent_tree_range: extent len is zero, type: 0, extent [0, 0, 0], age [0, 0]
------------[ cut here ]------------
kernel BUG at fs/f2fs/extent_cache.c:678!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:__update_extent_tree_range+0x13bc/0x1500 fs/f2fs/extent_cache.c:678
Call Trace:
f2fs_update_read_extent_cache_range+0x192/0x3e0 fs/f2fs/extent_cache.c:1085
f2fs_d
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://monkey-project.com/Announcements/v1.5.3http://seclists.org/oss-sec/2014/q3/397http://seclists.org/oss-sec/2014/q3/412http://secunia.com/advisories/60783http://www.securityfocus.com/bid/69279https://exchange.xforce.ibmcloud.com/vulnerabilities/95336https://github.com/monkey/monkey/commit/b2d0e6f92310bb14a15aa2f8e96e1fb5379776ddhttp://monkey-project.com/Announcements/v1.5.3http://seclists.org/oss-sec/2014/q3/397http://seclists.org/oss-sec/2014/q3/412http://secunia.com/advisories/60783http://www.securityfocus.com/bid/69279https://exchange.xforce.ibmcloud.com/vulnerabilities/95336https://github.com/monkey/monkey/commit/b2d0e6f92310bb14a15aa2f8e96e1fb5379776dd
2014-08-26
Published