Vulnerabilities

CVE-2026-1678 - dns: memory‑safety issue in the DNS name parser

2026-03-05 0 views admin

CVE ID : CVE-2026-1678 Published : March 5, 2026, 6:21 a.m. | 1 hour, 5 minutes ago Description : dns_unpack_name() caches the buffer tailroom once and reuses it while appending DNS labels. As the buffer grows, the cached size becomes incorrect, and the final null terminator can be written past the buffer. With assertions disabled (default), a malicious DNS response can trigger an out-of-bounds write when CONFIG_DNS_RESOLVER is enabled. Severity: 9.4 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-1678

Severity

CRITICAL

Published

March 5, 2026

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-1678critical

CVE-2026-1678 - dns: memory‑safety issue in the DNS name parser

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-28128 - WordPress Verse theme <= 1.7.0 - local file inclusion vulnerability

CVE-2026-28127 - WordPress Lawyer Directory plugin <= 1.3.2 - cross site scripting (xss) vulnerab...

CVE-2026-28126 - WordPress RH Frontend Publishing Pro plugin <= 4.3.2 - reflected cross site scri...

CVE-2026-28124 - WordPress Notarius theme <= 1.9 - local file inclusion vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting