Nixpkgs Security Tracker

Login with GitHub

Suggestions search

All statuses
Filter by:
With package: tests.hardeningFlags.allExplicitDisabledGlibcxxAssertions

Found 2 matching suggestions

View:
Compact
Detailed
Untriaged
Permalink CVE-2026-4438
created 1 day, 6 hours ago
gethostbyaddr and gethostbyaddr_r return invalid DNS hostnames

Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification.

References

Affected products

glibc
  • =<2.43

Matching in nixpkgs

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)

Untriaged
Permalink CVE-2026-4437
created 1 day, 6 hours ago
gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS response

Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the application to treat a non-answer section of the DNS response as a valid answer.

References

Affected products

glibc
  • =<2.43

Matching in nixpkgs

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)