Search for packages
| purl | pkg:deb/debian/libtirpc@0.2.5-1.2%2Bdeb9u1 |
| Next non-vulnerable version | 1.3.1-1+deb11u1 |
| Latest non-vulnerable version | 1.3.1-1+deb11u1 |
| Risk | 3.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-4zzj-t3b7-qkbj
Aliases: CVE-2021-46828 |
In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svc_run infinite loop without accepting new connections. |
Affected by 0 other vulnerabilities. |
|
VCID-vhz3-5g4z-bkdw
Aliases: CVE-2018-14622 |
A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefd_xprt() was not checked in all instances, which could lead to a crash when the server exhausted the maximum number of available file descriptors. A remote attacker could cause an rpc-based application to crash by flooding it with new connections. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-9znp-ea7v-6yh6 |
CVE-2017-8779
|
|
| VCID-v99t-y1hj-t3b1 |
CVE-2016-4429
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-08-01T18:57:02.967723+00:00 | Debian Oval Importer | Affected by | VCID-4zzj-t3b7-qkbj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 37.0.0 |
| 2025-08-01T17:47:47.643468+00:00 | Debian Oval Importer | Fixing | VCID-v99t-y1hj-t3b1 | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 37.0.0 |
| 2025-08-01T15:43:08.881113+00:00 | Debian Oval Importer | Affected by | VCID-vhz3-5g4z-bkdw | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 37.0.0 |
| 2025-08-01T14:17:26.039614+00:00 | Debian Oval Importer | Fixing | VCID-9znp-ea7v-6yh6 | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 37.0.0 |