VDB
DEBIAN-CVE-2024-33599
DEBIAN-CVE-2024-33599
PUBLISHED
CVSS 8.100000381469727 HIGH
nscd: Stack-based buffer overflow in netgroup cache If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted by client requests then a subsequent client request for netgroup data may result in a stack-based buffer overflow. This flaw was introduced in glibc 2.15 when the cache was added to nscd. This vulnerability is only present in the nscd binary.
Risk Scores
CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | glibc | 0, 0 |
| Debian:13 | glibc | 0, 0 |
| Debian:12 | glibc | 2.36-9+deb12u2, 2.36-9+deb12u3, 2.36-9+deb12u4 |
| Debian:11 | glibc | 2.31-13, *, 2.31-13 |
Timeline
- May 6, 2024 CVE Published
- Apr 28, 2026 CVE Updated