SEVERE VULNERABILITIES
Potential denial of service or execution of arbitrary code in nscd
URL: https://lists.debian.org/debian-security-announce/2024/msg00087.html
Classification: Severe, Solution: Official Fix, Exploit Maturity: Unproven, CVSSv3.1: None
CVEs: CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602
Several vulnerabilities were discovered in nscd, the Name Service Cache
Daemon in the GNU C library which may lead to denial of service or the
execution of arbitrary code.
For the oldstable distribution (bullseye), these problems have been fixed
in version 2.31-13+deb11u10.
For the stable distribution (bookworm), these problems have been fixed in
version 2.36-9+deb12u7.
We recommend that you upgrade your glibc packages.
LeadSeason
commented
4 months ago
From ncsc-fi-newsbot@traficom.fi