Vulnerabilities

CVE-2026-5172

by Fred · 11/05/2026

A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extract_name() to advance the pointer past the record’s end.

More information : https://github.com/NixOS/nixpkgs/pull/519082

Similar

Tags: Cybersecurity Alert