CVE-2018-14621

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/08/2018
Last modified:
07/11/2023

Description

An infinite loop vulnerability was found in libtirpc before version 1.0.2-rc2. With the port to using poll rather than select, exhaustion of file descriptors would cause the server to enter an infinite loop, consuming a large amount of CPU time and denying service to other clients until restarted.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:libtirpc_project:libtirpc:*:*:*:*:*:*:*:* 1.0.1 (including)
cpe:2.3:a:libtirpc_project:libtirpc:1.0.2:rc1:*:*:*:*:*:*