Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2013-1950

Published: 9 July 2013

The svc_dg_getargs function in libtirpc 0.2.3 and earlier allows remote attackers to cause a denial of service (rpcbind crash) via a Sun RPC request with crafted arguments that trigger a free of an invalid pointer.

Priority

Medium

Status

Package Release Status
libtirpc
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(code-not-present)
eoan Not vulnerable
(code-not-present)
focal Not vulnerable
(code-not-present)
groovy Not vulnerable
(code-not-present)
hardy Does not exist

hirsute Not vulnerable
(code-not-present)
impish Not vulnerable
(code-not-present)
jammy Not vulnerable
(code-not-present)
kinetic Not vulnerable
(code-not-present)
lucid Not vulnerable
(code-not-present)
lunar Not vulnerable
(code-not-present)
oneiric Not vulnerable
(code-not-present)
precise Not vulnerable
(code-not-present)
quantal Not vulnerable
(code-not-present)
raring Not vulnerable
(code-not-present)
trusty Not vulnerable
(code-not-present)
upstream Needs triage

xenial Not vulnerable
(code-not-present)
Patches:
upstream: http://git.infradead.org/users/steved/libtirpc.git/commitdiff/a9f437119d79a438cb12e510f3cadd4060102c9f
upstream: http://git.linux-nfs.org/?p=steved/libtirpc.git;a=commit;h=a9f437119d79a438cb12e510f3cadd4060102c9f
ntirpc
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(code not present)
eoan Ignored
(end of life)
focal Not vulnerable
(code not present)
groovy Not vulnerable
(code not present)
hirsute Not vulnerable
(code not present)
impish Not vulnerable
(code not present)
jammy Not vulnerable
(code not present)
kinetic Not vulnerable
(code not present)
lunar Not vulnerable
(code not present)
trusty Does not exist

upstream Needs triage

xenial Not vulnerable
(code not present)