vulnerability

CentOS Linux: CVE-2024-33601: Important: glibc security update (CESA-2024:3588)

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
05/06/2024
Added
06/05/2024
Modified
02/18/2025

Description

nscd: netgroup cache may terminate daemon on memory allocation failure

The Name Service Cache Daemon's (nscd) netgroup cache uses xmalloc or
xrealloc and these functions may terminate the process due to a memory
allocation failure resulting in a denial of service to the clients. The
flaw was introduced in glibc 2.15 when the cache was added to nscd.

This vulnerability is only present in the nscd binary.

Solution(s)

centos-upgrade-glibccentos-upgrade-glibc-commoncentos-upgrade-glibc-debuginfocentos-upgrade-glibc-debuginfo-commoncentos-upgrade-glibc-develcentos-upgrade-glibc-headerscentos-upgrade-glibc-staticcentos-upgrade-glibc-utilscentos-upgrade-nscd
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.