CVE-2016-4429

Stack-based buffer overflow in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C Library (aka glibc or libc6) allows remote servers to cause a denial of service (crash) or possibly unspecified other impact via a flood of crafted ICMP and UDP packets.
References
Link Resource
http://lists.opensuse.org/opensuse-updates/2016-06/msg00030.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-07/msg00039.html Mailing List Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21995039 Broken Link
http://www.securityfocus.com/bid/102073 Third Party Advisory VDB Entry
https://lists.debian.org/debian-lts-announce/2020/06/msg00027.html
https://source.android.com/security/bulletin/2017-12-01 Third Party Advisory
https://sourceware.org/bugzilla/show_bug.cgi?id=20112 Issue Tracking Patch Third Party Advisory
https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=bc779a1a5b3035133024b21e2f339fe4219fb11c
https://usn.ubuntu.com/3759-1/ Third Party Advisory
https://usn.ubuntu.com/3759-2/ Third Party Advisory
https://www.oracle.com//security-alerts/cpujul2021.html
http://lists.opensuse.org/opensuse-updates/2016-06/msg00030.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-07/msg00039.html Mailing List Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21995039 Broken Link
http://www.securityfocus.com/bid/102073 Third Party Advisory VDB Entry
https://lists.debian.org/debian-lts-announce/2020/06/msg00027.html
https://source.android.com/security/bulletin/2017-12-01 Third Party Advisory
https://sourceware.org/bugzilla/show_bug.cgi?id=20112 Issue Tracking Patch Third Party Advisory
https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=bc779a1a5b3035133024b21e2f339fe4219fb11c
https://usn.ubuntu.com/3759-1/ Third Party Advisory
https://usn.ubuntu.com/3759-2/ Third Party Advisory
https://www.oracle.com//security-alerts/cpujul2021.html
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

History

21 Nov 2024, 02:52

Type Values Removed Values Added
References () http://lists.opensuse.org/opensuse-updates/2016-06/msg00030.html - Mailing List, Third Party Advisory () http://lists.opensuse.org/opensuse-updates/2016-06/msg00030.html - Mailing List, Third Party Advisory
References () http://lists.opensuse.org/opensuse-updates/2016-07/msg00039.html - Mailing List, Third Party Advisory () http://lists.opensuse.org/opensuse-updates/2016-07/msg00039.html - Mailing List, Third Party Advisory
References () http://www-01.ibm.com/support/docview.wss?uid=swg21995039 - Broken Link () http://www-01.ibm.com/support/docview.wss?uid=swg21995039 - Broken Link
References () http://www.securityfocus.com/bid/102073 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/102073 - Third Party Advisory, VDB Entry
References () https://lists.debian.org/debian-lts-announce/2020/06/msg00027.html - () https://lists.debian.org/debian-lts-announce/2020/06/msg00027.html -
References () https://source.android.com/security/bulletin/2017-12-01 - Third Party Advisory () https://source.android.com/security/bulletin/2017-12-01 - Third Party Advisory
References () https://sourceware.org/bugzilla/show_bug.cgi?id=20112 - Issue Tracking, Patch, Third Party Advisory () https://sourceware.org/bugzilla/show_bug.cgi?id=20112 - Issue Tracking, Patch, Third Party Advisory
References () https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=bc779a1a5b3035133024b21e2f339fe4219fb11c - () https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=bc779a1a5b3035133024b21e2f339fe4219fb11c -
References () https://usn.ubuntu.com/3759-1/ - Third Party Advisory () https://usn.ubuntu.com/3759-1/ - Third Party Advisory
References () https://usn.ubuntu.com/3759-2/ - Third Party Advisory () https://usn.ubuntu.com/3759-2/ - Third Party Advisory
References () https://www.oracle.com//security-alerts/cpujul2021.html - () https://www.oracle.com//security-alerts/cpujul2021.html -

Information

Published : 2016-06-10 15:59

Updated : 2024-11-21 02:52


NVD link : CVE-2016-4429

Mitre link : CVE-2016-4429

CVE.ORG link : CVE-2016-4429


JSON object : View

Products Affected

gnu

  • glibc

opensuse

  • opensuse
  • leap

canonical

  • ubuntu_linux
CWE
CWE-787

Out-of-bounds Write