OVMSA-2017-0108

OVMSA-2017-0108 - libtirpc security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2017-05-23

Description


[0.2.1-13_9]
- Fix for CVE-2017-8779 (bz 1449458)

[0.2.1-13]
- tirpc: fix taddr2uaddr for AF_LOCAL (bz 1285144)

[0.2.1-12]
- clnt_vc_create: Do not hold a global mutex during connect (bz 1332520)

[0.2.1-11]
- Backported upstream debugging (bz 1273158)
- Fixed memory leak in svc_vc_create (bz 1276687)
- Fixed memory leak in svc_tli_create (bz 1276855)
- Fixed memory leak in __svc_vc_dodestroy (bz 1276856)

[0.2.1-10]
- xdr_rejected_reply: Don't crash with invalid server rejection (bz 982064)

[0.2.1-9]
- Fixed overrun in svcauth_gss_validate() (bz 1056809)

[0.2.1-8]
- Added authgss_free_private_data call (bz 1082807)

[0.2.1-7]
- Fixed some races in getnetconfig code (bz 1031498)
- Remove the installation of libtirpc.a and libtirpc.la (bz 869397)


Related CVEs


CVE-2017-8779

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle VM 3.3 (x86_64) libtirpc-0.2.1-13.el6_9.src.rpm84a280d5dc4550dc9c33f299ba0a781e-
libtirpc-0.2.1-13.el6_9.x86_64.rpm9e8873d696a1dc54473572f988aa1c5e-
Oracle VM 3.4 (x86_64) libtirpc-0.2.1-13.el6_9.src.rpm84a280d5dc4550dc9c33f299ba0a781e-
libtirpc-0.2.1-13.el6_9.x86_64.rpm9e8873d696a1dc54473572f988aa1c5e-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete