[Bug 1687930] [NEW] remote denial-of-service
Guido
guidovranken at gmail.com
Wed May 3 12:13:34 UTC 2017
Public bug reported:
It is possible to consume any amount of memory on an rpcbind server with
a remote attack. This can affect the stability of the entire system.
Write-up: https://guidovranken.wordpress.com/2017/05/03/rpcbomb-remote-rpcbind-denial-of-service-patches/
Exploit + Patches: https://github.com/guidovranken/rpcbomb/
** Affects: rpcbind (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to rpcbind in Ubuntu.
https://bugs.launchpad.net/bugs/1687930
Title:
remote denial-of-service
Status in rpcbind package in Ubuntu:
New
Bug description:
It is possible to consume any amount of memory on an rpcbind server
with a remote attack. This can affect the stability of the entire
system.
Write-up: https://guidovranken.wordpress.com/2017/05/03/rpcbomb-remote-rpcbind-denial-of-service-patches/
Exploit + Patches: https://github.com/guidovranken/rpcbomb/
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/rpcbind/+bug/1687930/+subscriptions
More information about the foundations-bugs
mailing list