Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/05/05 8:58 a.m.16 views

CVE-2026-6238

A flaw was found in glibc GNU C Library. The deprecated functions nsprintrrf, nsprintrr, and fpnquery do not properly validate the length of RDATA Resource Record Data in a DNS Domain Name System response when processing specific record types like LOC, CERT, TKEY, or TSIG. A remote attacker could...

6.5CVSS5.8AI score0.00311EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/04/30 2:30 a.m.6 views

SUSE CVE-2026-6238

The deprecated functions nsprintrrf, nsprintrr and fpnquery in the GNU C Library version 2.0.1 to version 2.43 fail to validate the RDATA content against the RDATA length in a DNS response when processing A6, CERT, LOC, TKEY or TSIG records, which may allow an attacker to craft a DNS response,...

5.3CVSS5.8AI score0.00311EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/28 4:43 p.m.19 views

EUVD-2026-26071

The deprecated functions nsprintrrf, nsprintrr and fpnquery in the GNU C Library version 2.2 and newer fail to validate the RDATA content against the RDATA length in a DNS response when processing LOC, CERT, TKEY or TSIG records, which may allow an attacker to craft a DNS response, causing a targ...

6.5CVSS5.5AI score0.00311EPSS
Exploits0References2
OSV
OSV
added 2026/03/24 4:49 p.m.2 views

GHSA-X6W6-2XWP-3JH6 Froxlor is vulnerable to BIND zone file injection via unsanitized DNS record content in DomainZones API

Summary The DomainZones.add API endpoint accessible to customers with DNS enabled does not validate the content field for several DNS record types LOC, RP, SSHFP, TLSA. An attacker can inject newlines and BIND zone file directives e.g. $INCLUDE into the zone file that gets written to disk when th...

8.8CVSS5.9AI score0.00544EPSS
Exploits1References5
OSV
OSV
added 2024/11/06 5:58 p.m.8 views

CLSA-2024-1730915924 Update of ca-certificates

update to CKBI 2.69 from NSS 3.103 - updated certificates: - Certificate "GLOBALTRUST 2020" - Certificate "OISTE WISeKey Global Root GC CA" - removed certificates: - Certificate "Security Communication Root CA" - Certificate "Camerfirma Chambers of Commerce Root" - Certificate "Chambers of...

5.8AI score
Exploits0References1
Rows per page
Query Builder