CVE-2024-33600

Public on 2024-04-25
Modified on 2024-04-25
Description

glibc: null pointer dereferences after failed netgroup cache insertion

Severity
Medium
See what this means
CVSS v3 Base Score
5.3
See breakdown

Affected Packages

Platform Package Release Date Advisory
Amazon Linux 2 - Core glibc 2024-12-19 ALAS2-2024-2718
Amazon Linux 2023 glibc 2025-06-02 ALAS2023-2025-988

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv3 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
NVD CVSSv3 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2024-33600 Mitre: CVE-2024-33600