CVE-2024-33600

CVE-2024-33600: nscd: Null pointer crashes after notfound response

Vendor The Gnu C Library
Product glibc
Weakness CWE-476
Published May 6, 2024
Last update May 12, 2026

CVSS base score

What the vulnerability does

01Description

nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's (nscd) cache fails to add a not-found netgroup response to the cache, the client request can result in a null pointer dereference. This flaw was introduced in glibc 2.15 when the cache was added to nscd. This vulnerability is only present in the nscd binary.

Key dates

02Disclosure timeline

May 6, 2024 CVE published
May 12, 2026 Record updated