Stack-based buffer overflow in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C Library (aka glibc or libc6) allows remote servers to cause a denial of service (crash) or possibly unspecified other impact via a flood of crafted ICMP and UDP packets.
http://lists.opensuse.org/opensuse-updates/2016-06/msg00030.html
http://lists.opensuse.org/opensuse-updates/2016-07/msg00039.html
http://www.securityfocus.com/bid/102073
http://www-01.ibm.com/support/docview.wss?uid=swg21995039
https://lists.debian.org/debian-lts-announce/2020/06/msg00027.html
https://source.android.com/security/bulletin/2017-12-01
https://sourceware.org/bugzilla/show_bug.cgi?id=20112
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=bc779a1a5b3035133024b21e2f339fe4219fb11c
Source: MITRE
Published: 2016-06-10
Updated: 2020-06-28
Type: CWE-787
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM
Base Score: 5.9
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Impact Score: 3.6
Exploitability Score: 2.2
Severity: MEDIUM
OR
OR
OR
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
137859 | Debian DLA-2256-1 : libtirpc security update | Nessus | Debian Local Security Checks | medium |
129223 | EulerOS 2.0 SP3 : glibc (EulerOS-SA-2019-2030) | Nessus | Huawei Local Security Checks | high |
126849 | EulerOS 2.0 SP2 : glibc (EulerOS-SA-2019-1721) | Nessus | Huawei Local Security Checks | high |
126294 | EulerOS 2.0 SP5 : glibc (EulerOS-SA-2019-1667) | Nessus | Huawei Local Security Checks | high |
121682 | Photon OS 1.0: Glibc PHSA-2017-0013 | Nessus | PhotonOS Local Security Checks | medium |
117331 | Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : libtirpc vulnerabilities (USN-3759-1) | Nessus | Ubuntu Local Security Checks | high |
111862 | Photon OS 1.0: Cracklib / Glibc / Httpd / Libevent / Libgcrypt PHSA-2017-0013 (deprecated) | Nessus | PhotonOS Local Security Checks | high |
97936 | Ubuntu 12.04 LTS : eglibc regression (USN-3239-3) | Nessus | Ubuntu Local Security Checks | medium |
97887 | Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS : eglibc, glibc regression (USN-3239-2) | Nessus | Ubuntu Local Security Checks | medium |
97856 | Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS : eglibc, glibc vulnerabilities (USN-3239-1) | Nessus | Ubuntu Local Security Checks | medium |
93309 | SUSE SLES11 Security Update : glibc (SUSE-SU-2016:2156-1) | Nessus | SuSE Local Security Checks | medium |
93175 | SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2016:1733-1) | Nessus | SuSE Local Security Checks | medium |
93173 | SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2016:1721-1) | Nessus | SuSE Local Security Checks | medium |
92145 | Fedora 23 : glibc (2016-b2dfb591cd) | Nessus | Fedora Local Security Checks | high |
92084 | Fedora 24 : glibc (2016-3c5d606035) | Nessus | Fedora Local Security Checks | high |
91987 | openSUSE Security Update : glibc (openSUSE-2016-852) | Nessus | SuSE Local Security Checks | high |
91534 | openSUSE Security Update : glibc (openSUSE-2016-699) | Nessus | SuSE Local Security Checks | high |