| Revision Date: | 2017-05-07 | Version: | 1 | | Title: | CVE-2017-8804 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | The xdr_bytes and xdr_string functions in the GNU C Library (aka glibc or libc6) 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service (virtual memory allocation, or memory consumption if an overcommit setting is not used) via a crafted UDP packet to port 111, a related issue to CVE-2017-8779.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2017-8804
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND Package Information
NOT glibc-source package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc-bin package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6-amd64 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6-armel package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6-i386 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6-pic package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6-ppc64 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6-s390 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libc6-x32 package in xenial, while related to the CVE in some way, is not affected.
OR NOT locales package in xenial, while related to the CVE in some way, is not affected.
OR NOT locales-all package in xenial, while related to the CVE in some way, is not affected.
OR NOT multiarch-support package in xenial, while related to the CVE in some way, is not affected.
OR NOT nscd package in xenial, while related to the CVE in some way, is not affected.
|
|