CVE-2026-12244— Heap overflow and crash with crafted SVCB RR
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-12244
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Heap overflow and crash with crafted SVCB RR
Source: NVD (National Vulnerability Database)
Vulnerability Description
If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a DNS message with a special crafted SVCB RR with an rdata size of 65512, that let's an (uint16_t) variable that is used to allocate space needed for the RR wrap (because total size > 65535), causing a heap overflow. The attacker can perform a controlled (RCE class) head write of up to 65509 bytes
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
整数溢出或超界折返
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| NLnet Labs | NSD | 4.14.0 ~ 4.14.3 | - |
II. Public POCs for CVE-2026-12244
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-12244
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-12244 (1)
- 🔗 https://www.nlnetlabs.nl/downloads/nsd/CVE-2026-12244.txtvendor-advisory
Same Patch Batch · NLnet Labs · 2026-06-25 · 4 CVEs total
| CVE-2026-12245 | Denial of DNS over TLS service by any DoT client | |
| CVE-2026-12246 | Out of bounds stack write with crafted APL RR | |
| CVE-2026-12490 | Bypass of client certificate verification with transfer over TLS |
IV. Related Vulnerabilities
Same vendor: NLnet Labs
- CVE-2026-12490
Bypass of client certificate verification with transfer over - CVE-2026-12246
Out of bounds stack write with crafted APL RR - CVE-2026-12245
Denial of DNS over TLS service by any DoT client - CVE-2026-10846
Insufficient verification that responses belong to a query - CVE-2026-49235
Routinator crashes on specifically crafted RRDP XML files
V. Comments for CVE-2026-12244
No comments yet