Vulnerability Details CVE-2024-33599
nscd: Stack-based buffer overflow in netgroup cache
If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted
by client requests then a subsequent client request for netgroup data
may result in a stack-based buffer overflow. This flaw was introduced
in glibc 2.15 when the cache was added to nscd.
This vulnerability is only present in the nscd binary.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.6%
CVSS Severity
CVSS v3 Score 8.1
References
- http://www.openwall.com/lists/oss-security/2024/07/22/5
- https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
- https://security.netapp.com/advisory/ntap-20240524-0011/
- https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0005
- http://www.openwall.com/lists/oss-security/2024/07/22/5
- https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
- https://security.netapp.com/advisory/ntap-20240524-0011/
- https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0005
Products affected by CVE-2024-33599
-
cpe:2.3:a:gnu:glibc:2.15
-
cpe:2.3:a:gnu:glibc:2.16
-
cpe:2.3:a:gnu:glibc:2.16.0
-
cpe:2.3:a:gnu:glibc:2.16.90
-
cpe:2.3:a:gnu:glibc:2.17
-
cpe:2.3:a:gnu:glibc:2.17.90
-
cpe:2.3:a:gnu:glibc:2.18
-
cpe:2.3:a:gnu:glibc:2.18.90
-
cpe:2.3:a:gnu:glibc:2.19
-
cpe:2.3:a:gnu:glibc:2.19.90
-
cpe:2.3:a:gnu:glibc:2.20
-
cpe:2.3:a:gnu:glibc:2.20.90
-
cpe:2.3:a:gnu:glibc:2.21
-
cpe:2.3:a:gnu:glibc:2.21.90
-
cpe:2.3:a:gnu:glibc:2.22
-
cpe:2.3:a:gnu:glibc:2.22.90
-
cpe:2.3:a:gnu:glibc:2.23
-
cpe:2.3:a:gnu:glibc:2.23.90
-
cpe:2.3:a:gnu:glibc:2.24
-
cpe:2.3:a:gnu:glibc:2.24.90
-
cpe:2.3:a:gnu:glibc:2.25
-
cpe:2.3:a:gnu:glibc:2.25.90
-
cpe:2.3:a:gnu:glibc:2.26
-
cpe:2.3:a:gnu:glibc:2.26.9000
-
cpe:2.3:a:gnu:glibc:2.27
-
cpe:2.3:a:gnu:glibc:2.27.9000
-
cpe:2.3:a:gnu:glibc:2.28
-
cpe:2.3:a:gnu:glibc:2.28.9000
-
cpe:2.3:a:gnu:glibc:2.29
-
cpe:2.3:a:gnu:glibc:2.29.9000
-
cpe:2.3:a:gnu:glibc:2.30
-
cpe:2.3:a:gnu:glibc:2.30.9000
-
cpe:2.3:a:gnu:glibc:2.31
-
cpe:2.3:a:gnu:glibc:2.31.9000
-
cpe:2.3:a:gnu:glibc:2.32
-
cpe:2.3:a:gnu:glibc:2.32.0
-
cpe:2.3:a:gnu:glibc:2.32.9000
-
cpe:2.3:a:gnu:glibc:2.33
-
cpe:2.3:a:gnu:glibc:2.33.9000
-
cpe:2.3:a:gnu:glibc:2.34
-
cpe:2.3:a:gnu:glibc:2.34.9000
-
cpe:2.3:a:gnu:glibc:2.35
-
cpe:2.3:a:gnu:glibc:2.35.9000
-
cpe:2.3:a:gnu:glibc:2.36
-
cpe:2.3:a:gnu:glibc:2.36.113
-
cpe:2.3:a:gnu:glibc:2.36.9000
-
cpe:2.3:a:gnu:glibc:2.37
-
cpe:2.3:a:gnu:glibc:2.37.38
-
cpe:2.3:a:gnu:glibc:2.37.9000
-
cpe:2.3:a:gnu:glibc:2.38
-
cpe:2.3:a:gnu:glibc:2.38.19
-
cpe:2.3:a:gnu:glibc:2.38.9000
-
cpe:2.3:a:gnu:glibc:2.39
-
cpe:2.3:a:gnu:glibc:2.39.9000
-
cpe:2.3:h:netapp:h300s:-
-
cpe:2.3:h:netapp:h410c:-
-
cpe:2.3:h:netapp:h410s:-
-
cpe:2.3:h:netapp:h500s:-
-
cpe:2.3:h:netapp:h700s:-
-
cpe:2.3:o:debian:debian_linux:10.0
-
cpe:2.3:o:netapp:h300s_firmware:-
-
cpe:2.3:o:netapp:h410c_firmware:-
-
cpe:2.3:o:netapp:h410s_firmware:-
-
cpe:2.3:o:netapp:h500s_firmware:-
-
cpe:2.3:o:netapp:h700s_firmware:-
-
cpe:2.3:o:netapp:hci_bootstrap_os:-