VDB

DEBIAN-CVE-2024-33601

DEBIAN-CVE-2024-33601 PUBLISHED CVSS 7.300000190734863 HIGH

nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache Daemon's (nscd) netgroup cache uses xmalloc or xrealloc and these functions may terminate the process due to a memory allocation failure resulting in a denial of service to the clients. The flaw was introduced in glibc 2.15 when the cache was added to nscd. This vulnerability is only present in the nscd binary.

Risk Scores

CVSS 3.1
7.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected Products

VendorProductVersions
Debian:13glibc0, 0
Debian:12glibc2.36-9+deb12u3, 2.36-9+deb12u4, 2.36-9+deb12u6
Debian:14glibc0, 0
Debian:11glibc2.31-13, 2.31-13, 2.31-13

Timeline

  • May 6, 2024 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›