The svc_dg_getargs function in libtirpc 0.2.3 and earlier allows remote attackers to cause a denial of service (rpcbind crash) via a Sun RPC request with crafted arguments that trigger a free of an invalid pointer. (CVE-2013-1950)
Impact
Attackers may be able to perform a denial-of-service (DoS) attack by causing rpcbind to no longer respond.