A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefd_xprt() was not checked in all instances, which could lead to a crash when the server exhausted the maximum number of available file descriptors. A remote attacker could cause an rpc-based application to crash by flooding it with new connections.
The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Enterprise_linux | Redhat | 7.0 | 7.0 |
Debian_linux | Debian | 8.0 | 8.0 |
Ubuntu_linux | Canonical | 16.04 | 16.04 |
Ubuntu_linux | Canonical | 14.04 | 14.04 |
Enterprise_linux_server_aus | Redhat | 7.4 | 7.4 |
Ubuntu_linux | Canonical | 18.04 | 18.04 |
Enterprise_linux_server_eus | Redhat | 7.4 | 7.4 |
Enterprise_linux_server_eus | Redhat | 7.5 | 7.5 |
Enterprise_linux_workstation | Redhat | 7.0 | 7.0 |
Enterprise_linux_desktop | Redhat | 7.0 | 7.0 |
Enterprise_linux_server_eus | Redhat | 7.6 | 7.6 |
Libtirpc | Libtirpc_project | * | * |