CVE-2026-5435

Vulnerability Description

The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the caller-supplied buffer length, and can result in an out-of-bounds write when printing TSIG records.

Vulnerability Details

Published Date

April 28, 2026

Last Modified

April 28, 2026

CWE ID

CWE-787

Source

NVD

External References

https://inbox.sourceware.org/libc-announce/7a655d55-276f-41fe-b550-feb3ebb2ce91@redhat.com/T/#u
https://sourceware.org/bugzilla/show_bug.cgi?id=34033

CVE-2026-5435

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment