CVE-2018-14621 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-14621 Interim 1 24 2025-02-17T02:41:39Z current 2021-05-30T14:15:37Z 2025-02-17T02:41:39Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-14621 An infinite loop vulnerability was found in libtirpc before version 1.0.2-rc2. With the port to using poll rather than select, exhaustion of file descriptors would cause the server to enter an infinite loop, consuming a large amount of CPU time and denying service to other clients until restarted. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2018-October/004670.html E-Mail link for SUSE-SU-2018:3146-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Container as a Service Platform 2.0 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Module for Basesystem 15 libtirpc libtirpc-devel libtirpc-devel-0.2.1-1.13.6.1 libtirpc-netconfig libtirpc1-0.2.1-1.13.6.1 libtirpc3 libtirpc3-32bit libtirpc1-0.2.1-1.13.6.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA libtirpc1-0.2.1-1.13.6.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA libtirpc1-0.2.1-1.13.6.1 as a component of SUSE Linux Enterprise Server 11 SP4 libtirpc1-0.2.1-1.13.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP4 libtirpc-devel-0.2.1-1.13.6.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libtirpc as a component of SUSE Container as a Service Platform 2.0 libtirpc-netconfig as a component of SUSE Linux Enterprise Desktop 12 SP3 libtirpc3 as a component of SUSE Linux Enterprise Desktop 12 SP3 libtirpc3-32bit as a component of SUSE Linux Enterprise Desktop 12 SP3 libtirpc as a component of SUSE Linux Enterprise Desktop 12 SP3 libtirpc-devel as a component of SUSE Linux Enterprise Module for Basesystem 15 libtirpc-netconfig as a component of SUSE Linux Enterprise Module for Basesystem 15 libtirpc3 as a component of SUSE Linux Enterprise Module for Basesystem 15 libtirpc3-32bit as a component of SUSE Linux Enterprise Module for Basesystem 15 libtirpc as a component of SUSE Linux Enterprise Module for Basesystem 15 libtirpc-netconfig as a component of SUSE Linux Enterprise Server 12 SP2-LTSS libtirpc3 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS libtirpc3-32bit as a component of SUSE Linux Enterprise Server 12 SP2-LTSS libtirpc as a component of SUSE Linux Enterprise Server 12 SP2-LTSS libtirpc-netconfig as a component of SUSE Linux Enterprise Server 12 SP3 libtirpc3 as a component of SUSE Linux Enterprise Server 12 SP3 libtirpc3-32bit as a component of SUSE Linux Enterprise Server 12 SP3 libtirpc as a component of SUSE Linux Enterprise Server 12 SP3 libtirpc-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libtirpc as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 An infinite loop vulnerability was found in libtirpc before version 1.0.2-rc2. With the port to using poll rather than select, exhaustion of file descriptors would cause the server to enter an infinite loop, consuming a large amount of CPU time and denying service to other clients until restarted. CVE-2018-14621 SUSE Linux Enterprise Server 11 SP1-TERADATA:libtirpc1-0.2.1-1.13.6.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:libtirpc1-0.2.1-1.13.6.1 SUSE Linux Enterprise Server 11 SP4:libtirpc1-0.2.1-1.13.6.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:libtirpc1-0.2.1-1.13.6.1 SUSE Linux Enterprise Software Development Kit 11 SP4:libtirpc-devel-0.2.1-1.13.6.1 SUSE Container as a Service Platform 2.0:libtirpc SUSE Linux Enterprise Desktop 12 SP3:libtirpc SUSE Linux Enterprise Desktop 12 SP3:libtirpc-netconfig SUSE Linux Enterprise Desktop 12 SP3:libtirpc3 SUSE Linux Enterprise Desktop 12 SP3:libtirpc3-32bit SUSE Linux Enterprise Module for Basesystem 15:libtirpc SUSE Linux Enterprise Module for Basesystem 15:libtirpc-devel SUSE Linux Enterprise Module for Basesystem 15:libtirpc-netconfig SUSE Linux Enterprise Module for Basesystem 15:libtirpc3 SUSE Linux Enterprise Module for Basesystem 15:libtirpc3-32bit SUSE Linux Enterprise Server 12 SP2-LTSS:libtirpc SUSE Linux Enterprise Server 12 SP2-LTSS:libtirpc-netconfig SUSE Linux Enterprise Server 12 SP2-LTSS:libtirpc3 SUSE Linux Enterprise Server 12 SP2-LTSS:libtirpc3-32bit SUSE Linux Enterprise Server 12 SP3:libtirpc SUSE Linux Enterprise Server 12 SP3:libtirpc-netconfig SUSE Linux Enterprise Server 12 SP3:libtirpc3 SUSE Linux Enterprise Server 12 SP3:libtirpc3-32bit SUSE Linux Enterprise Software Development Kit 12 SP3:libtirpc SUSE Linux Enterprise Software Development Kit 12 SP3:libtirpc-devel moderate 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L