CVE-2024-33600

May 6, 2024, 8:15 p.m.

None
No Score

Description

nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's (nscd) cache fails to add a not-found netgroup response to the cache, the client request can result in a null pointer dereference. This flaw was introduced in glibc 2.15 when the cache was added to nscd. This vulnerability is only present in the nscd binary.

Product(s) Impacted

Product Versions
glibc
  • 2.15

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0006

Tags

CWE-476
2024-05-06
3ff69d7a-14f2-4f67-a097-88dee7810d18
CVE-2024-33600

Timeline

Published: May 6, 2024, 8:15 p.m.
Last Modified: May 6, 2024, 8:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

3ff69d7a-14f2-4f67-a097-88dee7810d18

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.