CVE-2026-5435

HIGH

Potential buffer overflow in ns_sprintrrf TSIG handling path

Title source: cna

Description

The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the caller-supplied buffer length, and can result in an out-of-bounds write when printing TSIG records.

References (2)

[Issue Tracking] https://sourceware.org/bugzilla/show_bug.cgi?id=34033

[Mailing List] https://inbox.sourceware.org/libc-announce/[email protected]/T/#u

Scores

CVSS v3 7.3

EPSS 0.0004

EPSS Percentile 10.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-787

Status published

Products (1)

The GNU C Library/glibc 2.2

Published Apr 28, 2026

Tracked Since Apr 28, 2026