https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 27 May 2026 14:23:40 +0000 https://vulnerability.circl.lu/sighting/baf21220-0c52-437b-b232-6c7c4c9e3691/export {"uuid": "baf21220-0c52-437b-b232-6c7c4c9e3691", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49974", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16649", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49974\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Limit the number of concurrent async COPY operations\n\nNothing appears to limit the number of concurrent async COPY\noperations that clients can start. In addition, AFAICT each async\nCOPY can copy an unlimited number of 4MB chunks, so can run for a\nlong time. Thus IMO async COPY can become a DoS vector.\n\nAdd a restriction mechanism that bounds the number of concurrent\nbackground COPY operations. Start simple and try to be fair -- this\npatch implements a per-namespace limit.\n\nAn async COPY request that occurs while this limit is exceeded gets\nNFS4ERR_DELAY. The requesting client can choose to send the request\nagain after a delay or fall back to a traditional read/write style\ncopy.\n\nIf there is need to make the mechanism more sophisticated, we can\nvisit that in future patches.\n\ud83d\udccf Published: 2024-10-21T18:02:22.392Z\n\ud83d\udccf Modified: 2025-05-16T07:25:07.039Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/9e52ff544e0bfa09ee339fd7b0937ee3c080c24e\n2. https://git.kernel.org/stable/c/43e46ee5efc03990b223f7aa8b77aa9c3d3acfdf\n3. https://git.kernel.org/stable/c/7ea9260874b779637aff6d24c344b8ef4ac862a0\n4. https://git.kernel.org/stable/c/ae267989b7b7933dfedcd26468d0a88fc3a9da9e\n5. https://git.kernel.org/stable/c/b4e21431a0db4854b5023cd5af001be557e6c3db\n6. https://git.kernel.org/stable/c/6a488ad7745b8f64625c6d3a24ce7e448e83f11b\n7. https://git.kernel.org/stable/c/aadc3bbea163b6caaaebfdd2b6c4667fbc726752", "creation_timestamp": "2025-05-16T07:34:00.000000Z"} {"uuid": "baf21220-0c52-437b-b232-6c7c4c9e3691", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49974", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16649", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49974\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Limit the number of concurrent async COPY operations\n\nNothing appears to limit the number of concurrent async COPY\noperations that clients can start. In addition, AFAICT each async\nCOPY can copy an unlimited number of 4MB chunks, so can run for a\nlong time. Thus IMO async COPY can become a DoS vector.\n\nAdd a restriction mechanism that bounds the number of concurrent\nbackground COPY operations. Start simple and try to be fair -- this\npatch implements a per-namespace limit.\n\nAn async COPY request that occurs while this limit is exceeded gets\nNFS4ERR_DELAY. The requesting client can choose to send the request\nagain after a delay or fall back to a traditional read/write style\ncopy.\n\nIf there is need to make the mechanism more sophisticated, we can\nvisit that in future patches.\n\ud83d\udccf Published: 2024-10-21T18:02:22.392Z\n\ud83d\udccf Modified: 2025-05-16T07:25:07.039Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/9e52ff544e0bfa09ee339fd7b0937ee3c080c24e\n2. https://git.kernel.org/stable/c/43e46ee5efc03990b223f7aa8b77aa9c3d3acfdf\n3. https://git.kernel.org/stable/c/7ea9260874b779637aff6d24c344b8ef4ac862a0\n4. https://git.kernel.org/stable/c/ae267989b7b7933dfedcd26468d0a88fc3a9da9e\n5. https://git.kernel.org/stable/c/b4e21431a0db4854b5023cd5af001be557e6c3db\n6. https://git.kernel.org/stable/c/6a488ad7745b8f64625c6d3a24ce7e448e83f11b\n7. https://git.kernel.org/stable/c/aadc3bbea163b6caaaebfdd2b6c4667fbc726752", "creation_timestamp": "2025-05-16T07:34:00.000000Z"} https://vulnerability.circl.lu/sighting/baf21220-0c52-437b-b232-6c7c4c9e3691/export Fri, 16 May 2025 07:34:00 +0000 https://vulnerability.circl.lu/sighting/4e72ca1c-1b3d-4bb8-ae32-1bc606c65db5/export {"uuid": "4e72ca1c-1b3d-4bb8-ae32-1bc606c65db5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-49974", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"} {"uuid": "4e72ca1c-1b3d-4bb8-ae32-1bc606c65db5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-49974", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"} https://vulnerability.circl.lu/sighting/4e72ca1c-1b3d-4bb8-ae32-1bc606c65db5/export Wed, 03 Dec 2025 14:14:49 +0000