vulnerability
Huawei EulerOS: CVE-2024-33602: glibc security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:M/Au:N/C:C/I:C/A:C) | May 6, 2024 | Jul 16, 2024 | Apr 1, 2026 |
Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
May 6, 2024
Added
Jul 16, 2024
Modified
Apr 1, 2026
Description
nscd: netgroup cache assumes NSS callback uses in-buffer strings
The Name Service Cache Daemon's (nscd) netgroup cache can corrupt memory
when the NSS callback does not store all strings in the provided buffer.
The flaw was introduced in glibc 2.15 when the cache was added to nscd.
This vulnerability is only present in the nscd binary.
Solutions
huawei-euleros-2_0_sp10-upgrade-glibchuawei-euleros-2_0_sp10-upgrade-glibc-all-langpackshuawei-euleros-2_0_sp10-upgrade-glibc-commonhuawei-euleros-2_0_sp10-upgrade-glibc-locale-sourcehuawei-euleros-2_0_sp10-upgrade-libnslhuawei-euleros-2_0_sp10-upgrade-nscd
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.