Explore top 10 tips to secure your open-source projects now. Read More
×
# Security update for rpcbind Announcement ID: SUSE-SU-2026:22331-1 Release Date: 2026-06-22T14:34:40Z Rating: moderate References:. # Security update for rpcbind Announcement ID: SUSE-SU-2026:22331-1 Release Date: 2026-06-22T14:34:40Z Rating: moderate References: * bsc#1117217 * bsc#1181400 * bsc#1267212 Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that has three fixes can now be installed. ## Description: This update for rpcbind fixes the following issues * Update to rpcbind 1.2.9 (bsc#1267212) https://lore.kernel.org/linux- nfs/
-------------------------------------------------------------. openSUSE security update: security update for rpcbind ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21019-1 Rating: moderate References: * bsc#1117217 * bsc#1181400 * bsc#1267212 Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that has 3 bug fixes can now be installed. Description: This update for rpcbind fixes the following issues - Update to rpcbind 1.2.9 (bsc#1267212) https://lore.kernel.org/linux-nfs/
# Security update for rpcbind Announcement ID: SUSE-SU-2026:22259-1 Release Date: 2026-06-22T14:41:38Z Rating: moderate References:. # Security update for rpcbind Announcement ID: SUSE-SU-2026:22259-1 Release Date: 2026-06-22T14:41:38Z Rating: moderate References: * bsc#1117217 * bsc#1181400 * bsc#1267212 Affected Products: * SUSE Linux Micro 6.2 An update that has three fixes can now be installed. ## Description: This update for rpcbind fixes the following issues * Update to rpcbind 1.2.9 (bsc#1267212) https://lore.kernel.org/linux- nfs/
# Security update for rpcbind Announcement ID: SUSE-SU-2026:22069-1 Release Date: 2026-06-04T13:00:55Z Rating: moderate References:. # Security update for rpcbind Announcement ID: SUSE-SU-2026:22069-1 Release Date: 2026-06-04T13:00:55Z Rating: moderate References: * bsc#1117217 * bsc#1267212 Affected Products: * SUSE Linux Micro 6.1 An update that has two fixes can now be installed. ## Description: This update for rpcbind fixes the following issues Update to rpcbind 1.2.9: Security issue: * Fix several memory leaks and buffer overflows (bsc#1267212). Non security issue: * rpcbind fails to start (tumbleweed snapshot 20181120) (bsc#1117217). Changes: * rpcinfo: stack buffer overflow in rpcinfo rpcbaddrlist() * rpcbind: Stop unauthenticated oversized allocation in PMAPPROC_CALLIT decode * rpcbind: fix memory leak in read_warmstart() * rpcbind: fix memory leaks in network_init() * rpcbind: fix memory leak in init_transport() * Added -v (print version and compile flags) * rpcinfo: Removed a number of "old-style function definition" warnings * man/rpcbind: Update list of options * Comment out ListenStream=@/run/rpcbind.sock * [nfs/nfs-utils/rpcbind] rpcbind: avoid dereferencing NULL from realloc() * systemd/rpcbind.service.in: Add various hardenings options * man/rpcbind: Add Files section to manpage * Moved rpcbind.lock and default configs to /run instead of /var/run * rpcinfo: try connecting using abstract address * Listen on an AF_UNIX abstract address if supported * autotools/systemd: call rpcbind with -w only on enabled warm starts * rpcbind: fix double free in init_transport ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-565=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) *rpcbind-debugsource-1.2.9-slfo.1.1_1.1 * rpcbind-1.2.9-slfo.1.1_1.1 * rpcbind-debuginfo-1.2.9-slfo.1.1_1.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1117217 * https://bugzilla.suse.com/show_bug.cgi?id=1267212 . SUSE Linux Micro 6.1 rpcbind security patch addresses memory leaks, buffer overflows, and systemd enhancements.. SUSE Linux Micro,rpcbind,security patch,buffer overflow. . Severity: moderate. LinuxSecurity.com Team
USN-4986-1 caused a regression in rpcbind.. =========================================================================Ubuntu Security Notice USN-4986-4 June 10, 2021 rpcbind regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 ESM - Ubuntu 14.04 ESM Summary: USN-4986-1 caused a regression in rpcbind. Software Description: - rpcbind: converts RPC program numbers into universal addresses Details: USN-4986-1 fixed a vulnerability in rpcbind. The update caused a regression resulting in rpcbind crashing in certain environments. This update fixes the problem for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 ESM: rpcbind 0.2.3-0.2ubuntu0.16.04.1+esm2 Ubuntu 14.04 ESM: rpcbind 0.2.1-2ubuntu2.2+esm2 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4986-4 https://ubuntu.com/security/notices/USN-4986-1 https://bugs.launchpad.net/ubuntu/+source/rpcbind/+bug/1931507 . Ubuntu Security Update USN-4987-5 tackles a regression in rpcbind impacting Ubuntu 14.04 and 16.04 ESM.. rpcbind Update, Ubuntu Security Notice, DoS Attack, rpcbind Regression. . LinuxSecurity.com Team
USN-4986-1 caused a regression in rpcbind.. =========================================================================Ubuntu Security Notice USN-4986-3 June 10, 2021 rpcbind regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS Summary: USN-4986-1 caused a regression in rpcbind. Software Description: - rpcbind: converts RPC program numbers into universal addresses Details: USN-4986-1 fixed a vulnerability in rpcbind. The update caused a regression resulting in rpcbind crashing in certain environments. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: rpcbind 0.2.3-0.6ubuntu0.18.04.3 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4986-3 https://ubuntu.com/security/notices/USN-4986-1 https://bugs.launchpad.net/ubuntu/+source/rpcbind/+bug/1931507 Package Information: https://launchpad.net/ubuntu/+source/rpcbind/0.2.3-0.6ubuntu0.18.04.3 . Enhance the handling of rpcbind bugs and denial of service flaws in Ubuntu 18.04 LTS.. rpcbind regression, Denial of Service, Ubuntu 18.04 LTS. . LinuxSecurity.com Team
rpcbind could be made to consume resources and crash if it received specially crafted network traffic.. =========================================================================Ubuntu Security Notice USN-4986-2 June 09, 2021 rpcbind vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 ESM - Ubuntu 14.04 ESM Summary: rpcbind could be made to consume resources and crash if it received specially crafted network traffic. Software Description: - rpcbind: converts RPC program numbers into universal addresses Details: USN-4986-1 fixed a vulnerability in rpcbind. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 ESM: rpcbind 0.2.3-0.2ubuntu0.16.04.1+esm1 Ubuntu 14.04 ESM: rpcbind 0.2.1-2ubuntu2.2+esm1 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4986-2 https://ubuntu.com/security/notices/USN-4986-1 CVE-2017-8779 . The Ubuntu USN-4986-2 notice pertains to a vulnerability in rpcbind, which could result in a denial of service when subjected to specially designed traffic.. rpcbind Vulnerability, Denial of Service, Ubuntu Security Update. . Severity: Critical. LinuxSecurity.com Team
rpcbind could be made to consume resources and crash if it received specially crafted network traffic.. =========================================================================Ubuntu Security Notice USN-4986-1 June 09, 2021 rpcbind vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS Summary: rpcbind could be made to consume resources and crash if it received specially crafted network traffic. Software Description: - rpcbind: converts RPC program numbers into universal addresses Details: It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: rpcbind 0.2.3-0.6ubuntu0.18.04.2 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4986-1 CVE-2017-8779 Package Information: https://launchpad.net/ubuntu/+source/rpcbind/0.2.3-0.6ubuntu0.18.04.2 . The rpcbind flaw on Ubuntu poses risks of excessive resource usage and system instability. For further information, refer to advisory USN-4987-1.. rpcbind Security Advisory, Ubuntu 18.04 LTS, Denial of Service Fixes. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.