GNU glibc Information for VU#516825

Integer overflow in Sun RPC XDR library routines



Vendor Statement

Version 2.3.1 of the GNU C Library is vulnerable.  Earlier versions
are also vulnerable.  The following patches have been installed into the
CVS sources, and should appear in the next version of the GNU C
Library.  These patches are also available from the following URLs:


Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.