---

CVE-2017-12133 - log back

CVE-2017-12133 created at 25 Sep 2019 19:31:40
Severity	+ Critical
Remote	+ Remote
Type	+ Arbitrary code execution
Description	+ A use-after-free vulnerability has been found the GNU C Library (aka glibc or libc6) before version 2.26, in clntudp_call in the Sun RPC system.
References	+ https://www.sourceware.org/ml/libc-alpha/2017-08/msg00010.html
Notes	+ Need more info, I (rgacogne) couldn't find anything relevant at this time.