VDB
DEBIAN-CVE-2024-33600
DEBIAN-CVE-2024-33600
PUBLISHED
CVSS 5.900000095367432 MEDIUM
nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's (nscd) cache fails to add a not-found netgroup response to the cache, the client request can result in a null pointer dereference. This flaw was introduced in glibc 2.15 when the cache was added to nscd. This vulnerability is only present in the nscd binary.
Risk Scores
CVSS 3.1
5.900000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | glibc | 0, 0 |
| Debian:12 | glibc | 2.36-9, 2.36-9+deb12u1, 2.36-9+deb12u3 |
| Debian:11 | glibc | 2.31-13, 2.31-13, 2.31-13 |
| Debian:13 | glibc | 0, 0 |
Timeline
- May 6, 2024 CVE Published
- Apr 28, 2026 CVE Updated