NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted for the address family will overwrite the stack when the zone is written to disk, with a maximum of 111 attacker controlled bytes.
{ "cpe": "cpe:2.3:a:nlnetlabs:nsd:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "4.14.0" }, { "fixed": "4.14.3" } ], "source": "CPE_RANGE" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-12246.json"