vulnerability
SUSE: CVE-2024-33601: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | May 6, 2024 | May 20, 2024 | Dec 5, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
May 6, 2024
Added
May 20, 2024
Modified
Dec 5, 2025
Description
nscd: netgroup cache may terminate daemon on memory allocation failure
The Name Service Cache Daemon's (nscd) netgroup cache uses xmalloc or
xrealloc and these functions may terminate the process due to a memory
allocation failure resulting in a denial of service to the clients. The
flaw was introduced in glibc 2.15 when the cache was added to nscd.
This vulnerability is only present in the nscd binary.
Solutions
suse-upgrade-glibcsuse-upgrade-glibc-32bitsuse-upgrade-glibc-develsuse-upgrade-glibc-devel-32bitsuse-upgrade-glibc-devel-staticsuse-upgrade-glibc-devel-static-32bitsuse-upgrade-glibc-extrasuse-upgrade-glibc-gconv-modules-extrasuse-upgrade-glibc-htmlsuse-upgrade-glibc-i18ndatasuse-upgrade-glibc-infosuse-upgrade-glibc-langsuse-upgrade-glibc-localesuse-upgrade-glibc-locale-32bitsuse-upgrade-glibc-locale-basesuse-upgrade-glibc-locale-base-32bitsuse-upgrade-glibc-profilesuse-upgrade-glibc-profile-32bitsuse-upgrade-glibc-utilssuse-upgrade-glibc-utils-32bitsuse-upgrade-libnsl1suse-upgrade-libnsl1-32bitsuse-upgrade-nscd
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.