CVE-2013-1950

Published: Jul 9, 2013Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

The svc_dg_getargs function in libtirpc 0.2.3 and earlier allows remote attackers to cause a denial of service (rpcbind crash) via a Sun RPC request with crafted arguments that trigger a free of an invalid pointer.

Affected (8)

Products: Libtirpc Project: Libtirpc

Libtirpc Project

1 product

Libtirpc

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Libtirpc Project Libtirpc	Up to 0.2.3
Libtirpc Project Libtirpc	Version 0.1.10
Libtirpc Project Libtirpc	Version 0.1.11
Libtirpc Project Libtirpc	Version 0.1.8
Libtirpc Project Libtirpc	Version 0.1.9
Libtirpc Project Libtirpc	Version 0.2.0
Libtirpc Project Libtirpc	Version 0.2.1
Libtirpc Project Libtirpc	Version 0.2.2

Related CWEs

CWE-399

References (6)

http://git.infradead.org/users/steved/libtirpc.git/commitdiff/a9f437119d79a438cb12e510f3cadd4060102c9f

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2013-0884.html

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=948378

Source: secalert@redhat.com

http://git.infradead.org/users/steved/libtirpc.git/commitdiff/a9f437119d79a438cb12e510f3cadd4060102c9f

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2013-0884.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=948378

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.