CVE-2018-14622

Published: Aug 30, 2018Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefd_xprt() was not checked in all instances, which could lead to a crash when the server exhausted the maximum number of available file descriptors. A remote attacker could cause an rpc-based application to crash by flooding it with new connections.

Affected (12)

Products: Canonical: Ubuntu Linux · Debian: Debian Linux · Libtirpc Project: Libtirpc · +1 more

Show all products

Canonical: Ubuntu Linux · Debian: Debian Linux · Libtirpc Project: Libtirpc · Redhat: Enterprise Linux, Enterprise Linux Desktop, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Workstation

1 product

1 product

Libtirpc Project

1 product

5 products

Enterprise Linux

Enterprise Linux Desktop

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Workstation

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Debian Debian Linux	Version 8.0
Libtirpc Project Libtirpc	Before 0.3.3
Redhat Enterprise Linux	Version 7.0
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.4
Redhat Enterprise Linux Server Eus	Version 7.4
Redhat Enterprise Linux Server Eus	Version 7.5
Redhat Enterprise Linux Server Eus	Version 7.6
Redhat Enterprise Linux Workstation	Version 7.0

Related CWEs

Unchecked Return Value

The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

References (14)

http://git.linux-nfs.org/?p=steved/libtirpc.git%3Ba=commit%3Bh=1c77f7a869bdea2a34799d774460d1f9983d45f0

Source: secalert@redhat.com

https://access.redhat.com/errata/RHBA-2017:1991

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.novell.com/show_bug.cgi?id=968175

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14622

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://lists.debian.org/debian-lts-announce/2018/08/msg00034.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://usn.ubuntu.com/3759-1/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/3759-2/

Source: secalert@redhat.com

Third Party Advisory

http://git.linux-nfs.org/?p=steved/libtirpc.git%3Ba=commit%3Bh=1c77f7a869bdea2a34799d774460d1f9983d45f0

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/errata/RHBA-2017:1991

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://bugzilla.novell.com/show_bug.cgi?id=968175

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14622

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://lists.debian.org/debian-lts-announce/2018/08/msg00034.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://usn.ubuntu.com/3759-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3759-2/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.