Lucene search
K

137 matches found

OSV
OSV
added 2024/06/20 4:13 p.m.4 views

CLSA-2024-1718900000 glibc: Fix of 2 CVEs

CVE-2024-2961: fix buffer overflow issue in iconv function when converting strings to ISO-2022-CN-EXT character set - CVE-2024-33599: fix buffer overflow in netgroup cache...

8.1CVSS7.1AI score0.8833EPSS
Exploits16References1
OSV
OSV
added 2024/06/20 3:41 p.m.8 views

CLSA-2024-1718898112 glibc: Fix of 3 CVEs

CVE-2024-33600: nscd: avoid null pointer crashes after notfound response - CVE-2024-33601: fix memory allocation issue in netgroup cache by replacing xmalloc and xrealloc functions to prevent denial of service - CVE-2024-33602: fix memory corruption in netgroup cache by ensuring all strings are...

7.4CVSS6.8AI score0.01216EPSS
Exploits0References1
OSV
OSV
added 2024/06/20 3:26 p.m.13 views

CLSA-2024-1718897210 glibc: Fix of 3 CVEs

CVE-2024-33600: nscd: avoid null pointer crashes after notfound response - CVE-2024-33601: fix memory allocation issue in netgroup cache by replacing xmalloc and xrealloc functions to prevent denial of service - CVE-2024-33602: fix memory corruption in netgroup cache by ensuring all strings are...

7.4CVSS6.8AI score0.01216EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 11:0 a.m.12 views

CLSA-2024-1718794810 glibc: Fix of 3 CVEs

CVE-2024-33600: nscd: avoid null pointer crashes after notfound response - CVE-2024-33601: fix memory allocation issue in netgroup cache by replacing xmalloc and xrealloc functions to prevent denial of service - CVE-2024-33602: fix memory corruption in netgroup cache by ensuring all strings are...

7.4CVSS6.8AI score0.01216EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/18 12:0 a.m.30 views

Oracle Linux 8 : glibc (ELSA-2024-12440)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12440 advisory. - CVE-2024-33599: nscd: buffer overflow in netgroup cache RHEL-34264 - CVE-2024-33600: nscd: null pointer dereferences in netgroup cache RHEL-34267 -...

8.1CVSS8AI score0.8833EPSS
Exploits16References5
Oracle linux
Oracle linux
added 2024/06/17 12:0 a.m.50 views

glibc security update

2.28-251.0.2.2 - Forward port of Oracle patches over 2.28-251.2 Reviewed-by: Jose E. Marchesi Oracle history: May-23-2024 Cupertino Miranda - 2.28-251.0.2.1 - Forward port of Oracle patches over 2.28-251.1 Reviewed-by: Jose E. Marchesi May-22-2024 Cupertino Miranda - 2.28-251.0.2 - Forward port o...

7.5CVSS7.2AI score0.8833EPSS
Exploits16
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.44 views

Rocky Linux 8 : glibc (RLSA-2024:3344)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3344 advisory. glibc: stack-based buffer overflow in netgroup cache CVE-2024-33599 glibc: null pointer dereferences after failed netgroup cache insertion CVE-2024-3360...

8.1CVSS7AI score0.0131EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.90 views

Rocky Linux 9 : glibc (RLSA-2024:3339)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3339 advisory. glibc: Out of bounds write in iconv conversion to ISO-2022-CN-EXT CVE-2024-2961 glibc: stack-based buffer overflow in netgroup cache CVE-2024-33599 glib...

8.1CVSS8AI score0.8833EPSS
Exploits16References11
OSV
OSV
added 2024/06/10 12:51 p.m.8 views

CLSA-2024-1718023873 glibc: Fix of 2 CVEs

CVE-2024-2961: Fix buffer overflow issue in iconv function when converting strings to ISO-2022-CN-EXT character set - CVE-2024-33599: Fix buffer overflow in netgroup cache...

8.1CVSS7.2AI score0.8833EPSS
Exploits16References1
Tenable Nessus
Tenable Nessus
added 2024/06/05 12:0 a.m.28 views

Oracle Linux 7 : glibc (ELSA-2024-3588)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3588 advisory. - CVE-2024-33599: nscd: buffer overflow in netgroup cache RHEL-34263 - CVE-2024-33600: nscd: null pointer dereferences in netgroup cache -...

8.1CVSS8AI score0.8833EPSS
Exploits16References6
Oracle linux
Oracle linux
added 2024/06/05 12:0 a.m.395 views

glibc security update

2.17-326.3 - Forward-port Oracle patches to 2.17-326.3 Reviewed-by: Jose E. Marchesi 2.17-326.3 - nscd: Fix timeout type in netgroup cache RHEL-34263 2.17-326.2 - nscd: Do not use sendfile for the netgroup cache - nscd: Use-after-free in netgroup cache - CVE-2024-33599: nscd: buffer overflow in...

7.5CVSS8.8AI score0.8833EPSS
Exploits16
RedHat Linux
RedHat Linux
added 2024/06/04 2:38 p.m.4 views

glibc: netgroup cache may terminate daemon on memory allocation failure

A flaw was found in the glibc netgroup cache. The netgroup cache uses xmalloc/xrealloc and may terminate the process due to a memory allocation failure...

7.3CVSS6.7AI score0.01075EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/06/04 2:38 p.m.5 views

glibc: stack-based buffer overflow in netgroup cache

A stack-based buffer overflow flaw was found in the glibc netgroup cache. In certain conditions, its possible to trigger a stack-based buffer overflow condition that can lead to a denial of service and potentially other malicious actions that impact confidentiality and integrity...

8.1CVSS7.1AI score0.0131EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/06/04 2:38 p.m.4 views

glibc: netgroup cache assumes NSS callback uses in-buffer strings

A flaw was found in the glibc netgroup cache. The buffer-resizing code in addgetnetgrentX assumes that all string pointers point into the supplied buffer. This can potentially lead to memory corruption and cause a crash...

7.4CVSS6.8AI score0.00403EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/06/04 2:38 p.m.4 views

glibc: null pointer dereferences after failed netgroup cache insertion

A flaw was found in the glibc netgroup cache. After a failed cache insertion, addgetnetgrentX tries to send the non-existing response after the not-found header. This can lead to a null pointer dereference that causes a crash or exit...

5.9CVSS6.7AI score0.01216EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/06/04 2:38 p.m.93 views

Important: Red Hat Security Advisory: glibc security update

An update for glibc is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.1CVSS7.7AI score0.8833EPSS
Exploits16References6
RedHat Linux
RedHat Linux
added 2024/05/29 8:33 a.m.5 views

glibc: netgroup cache may terminate daemon on memory allocation failure

A flaw was found in the glibc netgroup cache. The netgroup cache uses xmalloc/xrealloc and may terminate the process due to a memory allocation failure...

7.3CVSS6.7AI score0.01075EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/05/29 8:33 a.m.3 views

glibc: stack-based buffer overflow in netgroup cache

A stack-based buffer overflow flaw was found in the glibc netgroup cache. In certain conditions, its possible to trigger a stack-based buffer overflow condition that can lead to a denial of service and potentially other malicious actions that impact confidentiality and integrity...

8.1CVSS7.1AI score0.0131EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/05/29 8:33 a.m.3 views

glibc: netgroup cache assumes NSS callback uses in-buffer strings

A flaw was found in the glibc netgroup cache. The buffer-resizing code in addgetnetgrentX assumes that all string pointers point into the supplied buffer. This can potentially lead to memory corruption and cause a crash...

7.4CVSS6.8AI score0.00403EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/05/29 8:33 a.m.3 views

glibc: null pointer dereferences after failed netgroup cache insertion

A flaw was found in the glibc netgroup cache. After a failed cache insertion, addgetnetgrentX tries to send the non-existing response after the not-found header. This can lead to a null pointer dereference that causes a crash or exit...

5.9CVSS6.7AI score0.01216EPSS
Exploits0References4
Rows per page
Query Builder