PT-2018-12621 · Libtirpc+2 · Libtirpc+2

Laura Pardo

Published

2017-07-06

Updated

2019-10-09

CVE-2018-14621

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions libtirpc versions prior to 1.0.2-rc2

Description An infinite loop issue was discovered, which occurs when the server exhausts its file descriptors, causing it to enter an infinite loop and consume a large amount of CPU time. This results in a denial of service to other clients until the server is restarted.

Recommendations For versions prior to 1.0.2-rc2, update to version 1.0.2-rc2 or later to resolve the issue.

Fix

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

ALT-PU-2017-1816

CVE-2018-14621

SUSE-SU-2018:3146-1

SUSE-SU-2018_3146-1

Affected Products

Alt Linux

Suse

Libtirpc

PT-2018-12621 · Libtirpc+2 · Libtirpc+2

CVE-2018-14621

Weakness Enumeration

Related Identifiers

Affected Products

References · 12