VDB
CVE-2014-9984
CVE-2014-9984
PUBLISHED
nscd in the GNU C Library (aka glibc or libc6) before version 2.20 does not correctly compute the size of an internal buffer when processing netgroup requests, possibly leading to an nscd daemon crash or code execution as the user running nscd.
EPSS 0.50% · 66.4th percentile
Risk Scores
EPSS Score
0.50%
66.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:Pro:14.04:LTS | eglibc | 0, 2.18-0ubuntu2, 2.18-0ubuntu4 |
Timeline
- Jun 12, 2017 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 28, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 8, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2014-9984 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2014-9984 third-party-advisory
- https://ubuntu.com/security/notices/USN-6762-1 vendor-advisory