GNU C Library 'xdr_bytes' and 'xdr_string' Function Denial of Service Vulnerability

The GNU C Library a.k.a. glibc, libc6 is an open-source, free C language compiler released under the LGPL license. A denial of service vulnerability exists in the 'xdrbytes' and 'xdrstring' functions in GNU C Library version 2.25, which stems from the program failing to properly handle buffer...

PT-2017-2115 · Gnu +2 · Glibc +2

Name of the Vulnerable Software and Affected Versions: glibc versions 2.25 Description: The issue is related to the xdr bytes and xdr string functions in the GNU C Library, which mishandle failures of buffer deserialization. This can be exploited by a remote attacker using a specially crafted UDP...