Overview

File _patchinfo of Package patchinfo.24713

<patchinfo incident="24713">
  <issue tracker="cve" id="2021-46828"/>
  <issue tracker="bnc" id="1201680">VUL-0: CVE-2021-46828: libtirpc: DoS vulnerability with lots of connections</issue>
  <issue tracker="bnc" id="1198752">Potential memory leak in libtirpc3 [ref:_00D1igLOd._5005q4V5rI:ref]</issue>
  <issue tracker="bnc" id="1200800">sles12sp5 - libtirpc segv issue ref:_00D1igLOd._5005q6RoKt:ref</issue>
  <packager>tsaupe</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for libtirpc</summary>
  <description>This update for libtirpc fixes the following issues:

- CVE-2021-46828: Fixed an uncontrolled file descriptor consumption,
  which could be exploited by remote attackers to prevent applications
  using the library from accepting new connections (bsc#1201680).

Non-security fixes:

- Exclude ipv6 addresses in client protocol version 2 code (bsc#1200800)
- Fix memory leak in params.r_addr assignement (bsc#1198752)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places