VDB

GCVE-110-MAGEIA-2016-270

GCVE-110-MAGEIA-2016-270
Advisory Published
Vulnetix · Advisory published July 31, 2016
A stack-based buffer overflow in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C Library (aka glibc or libc6) allows remote servers to cause a denial of service (crash) or possibly unspecified other impact via a flood of crafted ICMP and UDP packets (CVE-2016-4429). A similar issue was fixed in lnt_dg_call in src/clnt_dg.c in libtirpc package as part of this update. Other fixes in this update: - Fix static dlopen default library search path [Glibc BZ #17250] - grantpt: trust the kernel about pty group and permission mode [Glibc BZ #19347]

Affected Products

VendorProductVersionsPlatforms
Mageialibtirpc0 (affected), 0.2.5-3.1.mga5 (unaffected)
Mageiaglibc0 (affected), 2.20-23.mga5 (unaffected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›