QwikSec

Security Database

CVE

CWE

Training

CVE-2012-3420

Published: Aug 27, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple memory leaks in Performance Co-Pilot (PCP) before 3.6.5 allow remote attackers to cause a denial of service (memory consumption or daemon crash) via a large number of PDUs with (1) a crafted context number to the DoFetch function in pmcd/src/dofetch.c or (2) a negative type value to the __pmGetPDU function in libpcp/src/pdu.c.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://oss.sgi.com/cgi-bin/gitweb.cgi?p=pcp/pcp.git%3Ba=blob%3Bf=CHANGELOG%3Bh=16c9cbb2f61d909487ea1c3171f4ab33e5648ac5%3Bhb=fe51067ae869a4d59f350ac319b09edcb77ac8e6

x_refsource_CONFIRM

openSUSE-SU-2012:1079

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2012:1081

vendor-advisory

x_refsource_SUSE

https://bugzilla.redhat.com/show_bug.cgi?id=841319

x_refsource_MISC

[oss-security] 20120816 pcp: Multiple security flaws

mailing-list

x_refsource_MLIST

FEDORA-2012-12076

vendor-advisory

x_refsource_FEDORA

openSUSE-SU-2012:1036

vendor-advisory

x_refsource_SUSE

https://bugzilla.redhat.com/show_bug.cgi?id=841704

x_refsource_MISC

FEDORA-2012-12024

vendor-advisory

x_refsource_FEDORA

https://bugzilla.redhat.com/show_bug.cgi?id=841298

x_refsource_MISC

http://oss.sgi.com/cgi-bin/gitweb.cgi?p=pcp/pcp.git%3Ba=commit%3Bh=68fb968b4ee635bb301dc9ab64e633b0d66d27b4

x_refsource_CONFIRM

SUSE-SU-2013:0190

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_DEBIAN

http://oss.sgi.com/cgi-bin/gitweb.cgi?p=pcp/pcp.git%3Ba=commit%3Bh=a7dc844d3586ea79887655a97c4252a79751fdae

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.