CVE-2014-9984
CRITICAL9.8EPSS 0.50%發布日:2017/6/12修改日:2026/4/28
也稱為:DEBIAN-CVE-2014-9984
描述
nscd in the GNU C Library (aka glibc or libc6) before version 2.20 does not correctly compute the size of an internal buffer when processing netgroup requests, possibly leading to an nscd daemon crash or code execution as the user running nscd.
受影響套件(1)
- Debian/glibcfrom 0, < 2.19-14
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |