CVE-2021-46828

Опубликовано: 20 июл. 2022

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7.5

Описание

In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svc_run infinite loop without accepting new connections.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	1.3.2-2.1
esm-infra-legacy/trusty	not-affected	code not present
esm-infra/bionic	not-affected	code not present
esm-infra/focal	released	1.2.5-1ubuntu0.1
esm-infra/xenial	not-affected	code not present
focal	released	1.2.5-1ubuntu0.1
impish	ignored	end of life
jammy	released	1.3.2-2ubuntu0.1
kinetic	released	1.3.2-2.1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	needed
esm-infra-legacy/trusty	DNE
esm-infra/focal	not-affected	code not present
focal	not-affected	code not present
impish	ignored	end of life
jammy	not-affected	code not present
kinetic	not-affected	code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 78%

0.01199

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2021-46828

CVSS3: 7.5

redhat

больше 3 лет назад

CVE-2021-46828

CVSS3: 7.5

nvd

больше 3 лет назад

CVE-2021-46828

CVSS3: 7.5

msrc

больше 3 лет назад

In libtirpc before 1.3.3rc1 remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can in turn lead to an svc_run infinite loop without accepting new connections.

CVE-2021-46828

CVSS3: 7.5

debian

больше 3 лет назад

In libtirpc before 1.3.3rc1, remote attackers could exhaust the file d ...

SUSE-SU-2022:3791-1

suse-cvrf

около 3 лет назад

Security update for libtirpc

EPSS

Процентиль: 78%

0.01199

Низкий

7.5 High

CVSS3

CVE-2021-46828

Описание

Пакет libtirpc

Пакет ntirpc

Ссылки на источники

Связанные уязвимости