MEDIUM
The GNU C Library
CVE published 2026-04-28
CVE-2026-6238
CVE-2026-6238 is a vulnerability in the GNU C Library's deprecated functions ns_printrrf, ns_printrr, and fp_nquery. These functions, used for application debugging, fail to validate RDATA content against the RDATA length in DNS responses for A6, CERT, LOC, TKEY, or TSIG records. This oversight may allow an attacker to craft a malicious DNS response, potentially causing a target application to crash or re [truncated]