In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svc_run infinite loop without accepting new connections.

CPENameOperatorVersion
debian_linuxeq10.0
debian_linuxeq11.0
libtirpclt1.3.3

Name	Operator	Version
debian_linux	eq	10.0
debian_linux	eq	11.0
libtirpc	lt	1.3.3

References

git.linux-nfs.org/?p=steved/libtirpc.git;a=commit;h=86529758570cef4c73fb9b9c4104fdc510f701ed

lists.debian.org/debian-lts-announce/2022/08/msg00004.html

security.gentoo.org/glsa/202210-33

security.netapp.com/advisory/ntap-20221007-0004/

www.debian.org/security/2022/dsa-5200

nvd 1

nessus 25

openvas 19

cve 1

cbl_mariner 2

oraclelinux 1

veracode 1

ubuntu 1

debiancve 1

cvelist 1

redhat 2

alpinelinux 1

rosalinux 1

osv 6

suse 1

redhatcve 1

almalinux 1

ubuntucve 1

rocky 2

redos 1

gentoo 1

debian 2

mageia 1

photon 4

ics 2

ibm 2

avleonov 1

nvd

CVE-2021-46828

2022-07-20 06:15:07

nessus

Siemens SCALANCE XCM332 Allocation of Resources Without Limits or Throttling (CVE-2021-46828)

2023-05-02 00:00:00

RHEL 9 : libtirpc (RHSA-2022:8400)

2022-11-16 00:00:00

EulerOS 2.0 SP10 : libtirpc (EulerOS-SA-2022-2690)

2022-11-02 00:00:00

openvas

openSUSE: Security Advisory for libtirpc (SUSE-SU-2022:3305-1)

2022-09-20 00:00:00

Huawei EulerOS: Security Advisory for libtirpc (EulerOS-SA-2022-2298)

2022-09-14 00:00:00

SUSE: Security Advisory (SUSE-SU-2022:3791-1)

2022-10-28 00:00:00

cve

CVE-2021-46828

2022-07-20 06:15:07

cbl_mariner

CVE-2021-46828 affecting package libtirpc 1.3.3-1

2024-07-05 03:08:39

CVE-2021-46828 affecting package libtirpc 1.1.4-4

2022-09-17 05:56:35

oraclelinux

libtirpc security update

2022-11-22 00:00:00

veracode

Denial Of Service (DoS)

2022-07-20 11:06:47

ubuntu

libtirpc vulnerability

2022-07-28 00:00:00

debiancve

CVE-2021-46828

2022-07-20 06:15:07

cvelist

CVE-2021-46828

2022-07-20 00:00:00

redhat

(RHSA-2022:8400) Moderate: libtirpc security update

2022-11-15 06:23:29

(RHSA-2023:3742) Important: Red Hat OpenShift Data Foundation 4.13.0 security and bug fix update

2023-06-21 15:20:50

alpinelinux

CVE-2021-46828

2022-07-20 06:15:07

rosalinux

Advisory ROSA-SA-2024-2339

2024-02-06 08:17:10

osv

CVE-2021-46828

2022-07-20 06:15:07

libtirpc - security update

2022-08-11 00:00:00

libtirpc - security update

2022-08-07 00:00:00

suse

Security update for libtirpc (important)

2022-09-19 00:00:00

redhatcve

CVE-2021-46828

2022-07-21 07:45:33

almalinux

Moderate: libtirpc security update

2022-11-15 00:00:00

ubuntucve

CVE-2021-46828

2022-07-20 00:00:00

rocky

libtirpc security update

2022-11-15 06:23:29

libtirpc bug fix and enhancement update

2022-05-10 08:15:03

redos

ROS-20240403-03

2024-04-03 00:00:00

gentoo

Libtirpc: Denial of Service

2022-10-31 00:00:00

debian

[SECURITY] [DSA 5200-1] libtirpc security update

2022-08-07 08:56:53

[SECURITY] [DLA 3071-1] libtirpc security update

2022-08-11 10:59:36

mageia

Updated libitrpc packages fix security vulnerability

2022-08-20 13:04:13

photon

Important Photon OS Security Update - PHSA-2022-0224

2022-08-06 00:00:00

Important Photon OS Security Update - PHSA-2022-0504

2022-08-06 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0431

2022-08-09 00:00:00

ics

Siemens SCALANCE XCM332

2023-04-13 12:00:00

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

ibm

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from curl, systemd, and Golang Go

2022-09-28 09:47:09

Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps

2023-07-31 09:28:35

avleonov

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

2022-12-30 18:03:13

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.2 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.7%

JSON

Related for PRION:CVE-2021-46828