CVE-2026-35344

Name of the Vulnerable Software and Affected Versions uutils coreutils (affected versions not specified)

Description The dd utility suppresses errors during file truncation operations by unconditionally calling the Result::ok() function on truncation attempts. Although this was intended to mimic GNU behavior for special files such as '/dev/null', the implementation also hides failures on regular files and directories caused by read-only file systems or full disks. This may result in silent data corruption in migration or backup scripts, as the utility can report a successful operation despite the destination file containing garbage or old data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.