| Revision Date: | 2017-05-07 | Version: | 1 | | Title: | CVE-2017-8804 on Ubuntu 18.10 (cosmic) - medium. | | Description: | The xdr_bytes and xdr_string functions in the GNU C Library (aka glibc or libc6) 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service (virtual memory allocation, or memory consumption if an overcommit setting is not used) via a crafted UDP packet to port 111, a related issue to CVE-2017-8779.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2017-8804
| | Platform(s): | Ubuntu 18.10
| Product(s): | | | Definition Synopsis | | Ubuntu 18.10 (cosmic) is installed. AND Package Information
NOT glibc-source package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc-bin package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc6 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc6-amd64 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc6-armel package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc6-i386 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc6-pic package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc6-s390 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libc6-x32 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT locales package in cosmic, while related to the CVE in some way, is not affected.
OR NOT locales-all package in cosmic, while related to the CVE in some way, is not affected.
OR NOT multiarch-support package in cosmic, while related to the CVE in some way, is not affected.
OR NOT nscd package in cosmic, while related to the CVE in some way, is not affected.
|
|