VYPR
Medium severity6.5NVD Advisory· Published Sep 18, 2023· Updated May 12, 2026

CVE-2023-4527

CVE-2023-4527

Description

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack contents through the function returned address data, and may cause a crash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

713

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.