{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-5358", "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "state": "REJECTED", "assignerShortName": "glibc", "dateReserved": "2026-04-01T17:07:51.437Z", "datePublished": "2026-04-20T20:37:23.178Z", "dateUpdated": "2026-04-22T13:04:20.656Z", "dateRejected": "2026-04-22T13:04:20.656Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "shortName": "glibc", "dateUpdated": "2026-04-22T13:04:20.656Z"}, "rejectedReasons": [{"lang": "en", "value": "REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been\u00a0discovered that no NIS+ client or server was ever released for any\u00a0Linux-based OS distributions and as such this makes the API provisional\u00a0and unused. Secondly it has been discovered that the NIS+ cold start\u00a0cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API\u00a0can only be called with a trusted server from the pre-populated cache.\u00a0The use of a trusted server means no trust boundary is crossed and this\u00a0is therefore considered a normal bug.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<div><span>REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been&nbsp;</span><span>discovered that no NIS+ client or server was ever released for any&nbsp;</span><span>Linux-based OS distributions and as such this makes the API provisional&nbsp;</span><span>and unused. Secondly it has been discovered that the NIS+ cold start&nbsp;</span><span>cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API&nbsp;</span><span>can only be called with a trusted server from the pre-populated cache.&nbsp;</span><span>The use of a trusted server means no trust boundary is crossed and this&nbsp;</span><span>is therefore considered a normal bug.</span></div><div><span><br></span></div><div><span><br></span></div>"}]}], "x_generator": {"engine": "Vulnogram 1.0.1"}}}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-5358", "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "state": "REJECTED", "assignerShortName": "glibc", "dateReserved": "2026-04-01T17:07:51.437Z", "datePublished": "2026-04-20T20:37:23.178Z", "dateUpdated": "2026-04-22T13:04:20.656Z", "dateRejected": "2026-04-22T13:04:20.656Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "shortName": "glibc", "dateUpdated": "2026-04-22T13:04:20.656Z"}, "rejectedReasons": [{"lang": "en", "value": "REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been\u00a0discovered that no NIS+ client or server was ever released for any\u00a0Linux-based OS distributions and as such this makes the API provisional\u00a0and unused. Secondly it has been discovered that the NIS+ cold start\u00a0cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API\u00a0can only be called with a trusted server from the pre-populated cache.\u00a0The use of a trusted server means no trust boundary is crossed and this\u00a0is therefore considered a normal bug.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<div><span>REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been&nbsp;</span><span>discovered that no NIS+ client or server was ever released for any&nbsp;</span><span>Linux-based OS distributions and as such this makes the API provisional&nbsp;</span><span>and unused. Secondly it has been discovered that the NIS+ cold start&nbsp;</span><span>cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API&nbsp;</span><span>can only be called with a trusted server from the pre-populated cache.&nbsp;</span><span>The use of a trusted server means no trust boundary is crossed and this&nbsp;</span><span>is therefore considered a normal bug.</span></div><div><span><br></span></div><div><span><br></span></div>"}]}], "x_generator": {"engine": "Vulnogram 1.0.1"}}}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Rejected reason: REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been\u00a0discovered that no NIS+ client or server was ever released for any\u00a0Linux-based OS distributions and as such this makes the API provisional\u00a0and unused. Secondly it has been discovered that the NIS+ cold start\u00a0cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API\u00a0can only be called with a trusted server from the pre-populated cache.\u00a0The use of a trusted server means no trust boundary is crossed and this\u00a0is therefore considered a normal bug."}], "id": "CVE-2026-5358", "lastModified": "2026-04-22T14:17:05.687", "metrics": {}, "published": "2026-04-20T21:16:36.713", "references": [], "sourceIdentifier": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "vulnStatus": "Rejected"}

{"bugzilla": {"description": "glibc: glibc: Data corruption or denial of service via buffer overflow in nis_local_principal function", "id": "2459855", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459855"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.2", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", "status": "draft"}, "cwe": "CWE-120", "details": ["A flaw was found in the GNU C Library (glibc). The obsolete `nis_local_principal` function contains a buffer overflow vulnerability. A remote attacker could exploit this by spoofing a crafted response to a User Datagram Protocol (UDP) request. This could allow the attacker to overwrite static data in the requesting application, potentially leading to data corruption or a denial of service."], "mitigation": {"lang": "en:us", "value": "To mitigate this issue, ensure that Network Information Service (NIS) is not in use on affected systems. NIS is an obsolete service and its use is deprecated in modern Red Hat Enterprise Linux environments. If NIS is not required, disable any services or applications that rely on `nis_local_principal`."}, "name": "CVE-2026-5358", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Affected", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Affected", "package_name": "compat-glibc", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Affected", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "compat-glibc", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Affected", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:hummingbird:1", "fix_state": "Affected", "package_name": "glibc", "product_name": "Red Hat Hardened Images"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Affected", "package_name": "rhcos", "product_name": "Red Hat OpenShift Container Platform 4"}], "public_date": "2026-04-20T20:37:23Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-5358\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-5358\nhttps://sourceware.org/bugzilla/show_bug.cgi?id=34067"], "threat_severity": "Important"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,2.43]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "glibc", "source": "cna", "vendor": "The GNU C Library"}, "product": "glibc", "vendor": "the_gnu_c_library"}], "analysis": {"en": {"generated_at": "2026-04-22T05:54:40.326364+00:00", "value": {"mitigation_remediation": ["Upgrade the GNU C Library to the latest release (glibc\u202f\u22652.44) which removes the nis_local_principal function.", "Migrate any applications that use NIS to modern identity and access\u2011management services.", "If immediate upgrade is not possible, rebuild or reconfigure glibc to disable NIS support or compile the library without the deprecated NIS components."], "summary": {"action": "Patch Immediately", "impact": "Remote Code Execution via buffer overflow"}, "threat_synthesis": {"affected_systems": "The affected product is the GNU C Library, also known as glibc. Versions 2.43 and all earlier releases contain the vulnerable nis_local_principal implementation. NIS support was deprecated in glibc 2.26 but is still maintained for legacy use.", "description_and_impact": "The obsolete nis_local_principal function in the GNU C Library (glibc) up to version 2.43 may overflow a static buffer in the data section. This overflow can allow an attacker to craft a malicious UDP response that overwrites neighboring static data used by the requesting application. Such memory corruption can lead to arbitrary code execution or privilege escalation if the overwritten data influences program control flows. The vulnerability is a classic stack or data segment overflow (CWE\u2011120).", "risk_and_exploitability": "The EPSS score is < 1%, and the vulnerability is not listed in the CISA KEV catalog. The CVSS score is 9.1, but a buffer overflow of this nature is generally considered high impact. Because the exploit requires triggering a UDP request processed by the deprecated NIS function, it is likely limited to environments that still enable NIS. No public exploits have been reported, but the potential for remote code execution exists if an attacker can induce the application to process a crafted NIS response."}}}}, "created": "2026-04-21T00:00:12.702247+00:00", "updated": "2026-04-22T06:00:09.667932+00:00", "vendors": ["the_gnu_c_library", "the_gnu_c_library$PRODUCT$glibc"]}