Collectd · Collectd · CVE-2016-6254
**Name of the Vulnerable Software and Affected Versions**
collectd versions prior to 5.4.3
collectd versions 5.x prior to 5.5.2
**Description**
The issue is related to a heap-based buffer overflow in the `parse packet` function in `network.c`. This can be exploited by remote attackers through a crafted network packet, potentially leading to a denial of service (daemon crash) or possibly the execution of arbitrary code.
**Recommendations**
For versions prior to 5.4.3, update to version 5.4.3 or later.
For versions 5.x prior to 5.5.2, update to version 5.5.2 or later.