diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-25 22:58:49 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-25 22:58:49 +0200 |
| commit | e71c457cf51f19c88a80662a9549d981bad8e799 (patch) | |
| tree | ee588b2ffa9f164372132b5563bd3295abbde49b | |
| parent | 73a172230307a957547d7f911ba6e42163b228a2 (diff) | |
Add new glibc issues
| -rw-r--r-- | data/CVE/list | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index 894c1cacc5..b49df0dc31 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -1,3 +1,23 @@ +CVE-2024-33602 [nscd: netgroup cache assumes NSS callback uses in-buffer strings] + - glibc <unfixed> + NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=31680 + NOTE: https://inbox.sourceware.org/libc-alpha/cover.1713974801.git.fweimer@redhat.com/ + NOTE: https://www.openwall.com/lists/oss-security/2024/04/24/2 +CVE-2024-33601 [nscd: netgroup cache may terminate daemon on memory allocation failure] + - glibc <unfixed> + NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=31679 + NOTE: https://inbox.sourceware.org/libc-alpha/cover.1713974801.git.fweimer@redhat.com/ + NOTE: https://www.openwall.com/lists/oss-security/2024/04/24/2 +CVE-2024-33600 [nscd: Null pointer dereferences after failed netgroup cache insertion] + - glibc <unfixed> + NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=31678 + NOTE: https://inbox.sourceware.org/libc-alpha/cover.1713974801.git.fweimer@redhat.com/ + NOTE: https://www.openwall.com/lists/oss-security/2024/04/24/2 +CVE-2024-33599 [nscd: netgroup cache: invalid memcpy under low memory/storage conditions] + - glibc <unfixed> + NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=31677 + NOTE: https://inbox.sourceware.org/libc-alpha/cover.1713974801.git.fweimer@redhat.com/ + NOTE: https://www.openwall.com/lists/oss-security/2024/04/24/2 CVE-2024-4175 (Unicode transformation vulnerability in Hyperion affecting version 2.0 ...) NOT-FOR-US: Hyperion CVE-2024-4174 (Cross-Site Scripting (XSS) vulnerability in Hyperion Web Server affect ...) |