GNU C Library 'xdr_bytes' and 'xdr_string' Function Denial of Service Vulnerability

The GNU C Library a.k.a. glibc, libc6 is an open-source, free C language compiler released under the LGPL license. A denial of service vulnerability exists in the 'xdrbytes' and 'xdrstring' functions in GNU C Library version 2.25, which stems from the program failing to properly handle buffer...

PT-2017-2115 · Gnu +2 · Glibc +2

Name of the Vulnerable Software and Affected Versions: glibc versions 2.25 Description: The issue is related to the xdr bytes and xdr string functions in the GNU C Library, which mishandle failures of buffer deserialization. This can be exploited by a remote attacker using a specially crafted UDP...

CVE-2009-3699

Stack-based buffer overflow in libcsa.a aka the calendar daemon library in IBM AIX 5.x through 5.3.10 and 6.x through 6.1.3, and VIOS 2.1 and earlier, allows remote attackers to execute arbitrary code via a long XDR string in the first argument to procedure 21 of rpc.cmsd...