Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Slackware 14.2: SSA:2017-191-02 DoS Fix for Rpcbind Package Update

slackware
Calendar Grey July 10, 2017
Dist Slackware Esm H88
Updated rpcbind versions have been released for Slackware 14.2 and -current to address a security vulnerability linked to Denial of Service attacks.
New rpcbind packages are available for Slackware 14.2 and -current to fix a security issue

Summary

Here are the details from the Slackware 14.2 ChangeLog: patches/packages/rpcbind-0.2.4-i586-1_slack14.2.txz: Upgraded. Patched a bug which can cause a denial of service through memory exhaustion. Thanks to Robby Workman. For more information, see: https://www.cve.org/CVERecord?id=CVE-2017-8779 (* Security fix *)

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 14.2 package: 97493f015343ca71530229f84d2c2883 rpcbind-0.2.4-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: b716552c539e1645c953ac262aecefe1 rpcbind-0.2.4-x86_64-1_slack14.2.txz
Slackware -current package: e4abfe31a8843f8075792890d8d6c509 n/rpcbind-0.2.4-i586-1.txz
Slackware x86_64 -current package: 9cf44524e55f2aa365455821f3756c48 n/rpcbind-0.2.4-x86_64-1.txz

Severity
important
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg rpcbind-0.2.4-i586-1_slack14.2.txz If rpcbind is running, restart it: # /etc/rc.d/rc.rpc restart