{"id":"CVE-2021-27645","details":"The nameserver caching daemon (nscd) in the GNU C Library (aka glibc or libc6) 2.29 through 2.33, when processing a request for netgroup lookup, may crash due to a double-free, potentially resulting in degraded service or Denial of Service on the local system. This is related to netgroupcache.c.","modified":"2026-04-16T04:35:42.903953900Z","published":"2021-02-24T15:15:13.837Z","related":["ALSA-2021:4358","openSUSE-SU-2024:10792-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7LZNT6KTMCCWPWXEOGSHD3YLYZKUGMH5/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7TS26LIZSOBLGJEZMJX4PXT5BQDE2WS/"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00021.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202107-07"},{"type":"FIX","url":"https://sourceware.org/bugzilla/show_bug.cgi?id=27462"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/bminor/glibc","events":[{"introduced":"56c86f5dd516284558e106d04b92875d5b623b7a"},{"last_affected":"9826b03b747b841f5fc6de2054bf1ef3f5c4bdf3"}],"database_specific":{"versions":[{"introduced":"2.29"},{"last_affected":"2.33"}]}}],"versions":["changelog-ends-here","glibc-2.29","glibc-2.29.9000","glibc-2.30","glibc-2.30.9000","glibc-2.31","glibc-2.31.9000","glibc-2.32","glibc-2.32.9000","glibc-2.33"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-27645.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"33"}]},{"events":[{"introduced":"0"},{"last_affected":"34"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L"}]}