UbuntuUpdates.org

Package "libtirpc"

Name: libtirpc

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • transport-independent RPC library - development files
  • transport-independent RPC library

Latest version: 0.2.5-1ubuntu0.1
Release: xenial (16.04)
Level: security
Repository: main

Links



Other versions of "libtirpc" in Xenial

Repository Area Version
base main 0.2.5-1
updates main 0.2.5-1ubuntu0.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.2.5-1ubuntu0.1 2018-09-05 16:06:44 UTC

  libtirpc (0.2.5-1ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2016-4429.diff: fix in src/clnt_dg.c.
    - CVE-2016-4429
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-8779.patch: fix in src/rpc_generic.c,
      src/rpcb_prot.c, src/rpcb_st_xdr.c, src/xdr.c.
    - CVE-2017-8779
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14622.patch: fix in src/svc_c.c.
    - CVE-2018-14622

 -- <email address hidden> (Leonidas S. Barbosa) Tue, 04 Sep 2018 10:55:02 -0300

CVE-2016-4429 Stack-based buffer overflow in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C Library (aka glibc or libc6) allows remote servers to caus
CVE-2017-8779 rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through 1.4.3 do not consider the maximum RPC data size duri
CVE-2018-14622 A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefd_xprt() was not checked in all ins



About   -   Send Feedback to @ubuntu_updates