Improper input validation in The Gnu C Library Glibc
CVE-2026-4438
Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in vio…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.001 (20.5th percentile) — read the EPSS interpretation.
Affected products
- The Gnu C Library Glibc — versions 2.34