19 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14622
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefdxprt was not checked in all instances, which...
RHEL 6 : libtirpc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libtirpc: Segmentation fault in makefdxprt return value in svcvc.c CVE-2018-14622 Note that Nessus has not tested f...
Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in libtirpc (CVE-2018-14622 CVE-2018-14621)
Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in libtirpc. Vulnerability Details CVEID: CVE-2018-14622 DESCRIPTION: Libtirpc is vulnerable to a denial of service, caused by a NULL pointer dereference in the rpc-based application. By flooding the...
Ubuntu: Security Advisory (USN-3759-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libtirpc (EulerOS-SA-2021-2401)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : libtirpc (EulerOS-SA-2021-2401)
According to the version of the libtirpc package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefdxprt was not checked in all...
SUSE: Security Advisory (SUSE-SU-2018:3146-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : libtirpc (ALAS-2020-1362)
The version of libtirpc installed on the remote host is prior to 0.2.4-0.16.15. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1362 advisory. A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefdxprt was n...
Low: libtirpc
Issue Overview: A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefdxprt was not checked in all instances, which could lead to a crash when the server exhausted the maximum number of available file descriptors. A remote attacker could...
Ubuntu: Security Advisory (USN-3759-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES11 Security Update : libtirpc (SUSE-SU-2018:3146-1)
This update for libtirpc fixes the following issues : Security issues fixed : CVE-2018-14621: libtirpc: Infinite loop in EMFILE case in svcvc.c bsc1106519 CVE-2018-14622: libtirpc: Segmentation fault in makefdxprt return value in svcvc.c bsc1106517 Note that Tenable Network Security has extracted...
SUSE-SU-2018:3146-1 Security update for libtirpc
This update for libtirpc fixes the following issues: Security issues fixed: - CVE-2018-14621: libtirpc: Infinite loop in EMFILE case in svcvc.c bsc1106519 - CVE-2018-14622: libtirpc: Segmentation fault in makefdxprt return value in svcvc.c bsc1106517...
USN-3759-1: libtirpc vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description Aldy Hernandez discovered that libtirpc incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service. This issue...
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : libtirpc vulnerabilities (USN-3759-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3759-1 advisory. Aldy Hernandez discovered that libtirpc incorrectly handled certain inputs. An attacker could possibly use this issue to cause a...
USN-3759-1: libtirpc vulnerabilities
Aldy Hernandez discovered that libtirpc incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2016-4429 It was discovered that libtirpc incorrectly handled certain inputs. An...
Debian DLA-1487-1 : libtirpc security update
CVE-2018-14622 Fix for egmentation fault due to pointer becoming NULL. For Debian 8 'Jessie', this problem has been fixed in version 0.2.5-1+deb8u2. We recommend that you upgrade your libtirpc packages. NOTE: Tenable Network Security has extracted the preceding description block directly from the...
Debian: Security Advisory (DLA-1487-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
BELL-CVE-2018-14622 CVE-2018-14622 does not affect BellSoft software
Bulletin has no description...
CVE-2018-14622
libtirpc has a null-pointer dereference vulnerability (CVE-2018-14622) prior to version 0.3.3-rc3. The code path around makefd_xprt() does not always check return values, which can lead to a crash when the server hits the maximum number of file descriptors. A remote attacker could trigger a denia...