Red Hat, Inc. Information for VU#192995

Integer overflow in xdr_array() function when deserializing the XDR stream



Vendor Statement

Red Hat distributes affected packages glibc and Kerberos in all Red Hat Linux distributions. We are currently working on producing errata packages, when complete these will be available along with our advisory at the URLs below. At the same time users of the Red Hat Network will be able to update their systems using the 'up2date' tool.