{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-5358", "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "state": "PUBLISHED", "assignerShortName": "glibc", "dateReserved": "2026-04-01T17:07:51.437Z", "datePublished": "2026-04-20T20:37:23.178Z", "dateUpdated": "2026-04-20T20:37:23.178Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "shortName": "glibc", "dateUpdated": "2026-04-20T20:37:23.178Z"}, "title": "Static buffer overflow in deprecated nis_local_principal", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-120", "description": "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-8", "descriptions": [{"lang": "en", "value": "CAPEC-8 Buffer Overflow in an API Call"}]}], "affected": [{"vendor": "The GNU C Library", "product": "glibc", "versions": [{"status": "affected", "version": "0", "lessThanOrEqual": "2.43", "versionType": "custom"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The obsolete nis_local_principal function in the GNU C Library version 2.43 and older may overflow a buffer in the data section, which could allow an attacker to spoof a crafted response to a UDP request generated by this function and overwrite neighboring static data in the requesting application.\n\nNIS support is obsolete and has been deprecated in the GNU C Library since version 2.26 and is only maintained for legacy usage. Applications should port away from NIS to more modern identity and access management services.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "The obsolete nis_local_principal function in the GNU C Library version 2.43 and older may overflow a buffer in the data section, which could allow an attacker to spoof a crafted response to a UDP request generated by this function and overwrite neighboring static data in the requesting application.<br><br>NIS support is obsolete and has been deprecated in the GNU C Library since version 2.26 and is only maintained for legacy usage. Applications should port away from NIS to more modern identity and access management services."}]}], "references": [{"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=34067"}], "credits": [{"lang": "en", "value": "Rahul Hoysala", "type": "finder"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The obsolete nis_local_principal function in the GNU C Library version 2.43 and older may overflow a buffer in the data section, which could allow an attacker to spoof a crafted response to a UDP request generated by this function and overwrite neighboring static data in the requesting application.\n\nNIS support is obsolete and has been deprecated in the GNU C Library since version 2.26 and is only maintained for legacy usage. Applications should port away from NIS to more modern identity and access management services."}], "id": "CVE-2026-5358", "lastModified": "2026-04-20T21:16:36.713", "metrics": {}, "published": "2026-04-20T21:16:36.713", "references": [{"source": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=34067"}], "sourceIdentifier": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,2.43]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "glibc", "source": "cna", "vendor": "The GNU C Library"}, "product": "glibc", "vendor": "the_gnu_c_library"}], "analysis": {"en": {"generated_at": "2026-04-20T23:59:08.842947+00:00", "value": {"mitigation_remediation": ["Upgrade the GNU C Library to the latest release (glibc\u00a0\u22652.44) which removes the nis_local_principal function.", "Migrate any applications that use NIS to modern identity and access\u2011management services.", "If immediate upgrade is not possible, rebuild or reconfigure glibc to disable NIS support or compile the library without the deprecated NIS components."], "summary": {"action": "Patch Immediately", "impact": "Remote Code Execution via buffer overflow"}, "threat_synthesis": {"affected_systems": "The affected product is the GNU C Library, also known as glibc. Versions 2.43 and all earlier releases contain the vulnerable nis_local_principal implementation. NIS support was deprecated in glibc 2.26 but is still maintained for legacy use.", "description_and_impact": "The obsolete nis_local_principal function in the GNU C Library (glibc) up to version 2.43 may overflow a static buffer in the data section. This overflow can allow an attacker to craft a malicious UDP response that overwrites neighboring static data used by the requesting application. Such memory corruption can lead to arbitrary code execution or privilege escalation if the overwritten data influences program control flows. The vulnerability is a classic stack or data segment overflow (CWE\u2011120).", "risk_and_exploitability": "No EPSS score is available, and the vulnerability is not listed in the CISA KEV catalog. The CVSS score is not provided, but a buffer overflow of this nature is generally considered high impact. Because the exploit requires triggering a UDP request processed by the deprecated NIS function, it is likely limited to environments that still enable NIS. No public exploits have been reported, but the potential for remote code execution exists if an attacker can induce the application to process a crafted NIS response."}}}}, "created": "2026-04-21T00:00:12.702247+00:00", "updated": "2026-04-21T00:00:13.351757+00:00", "vendors": ["the_gnu_c_library", "the_gnu_c_library$PRODUCT$glibc"]}