vulnerability

Huawei EulerOS: CVE-2017-8779: rpcbind security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	May 4, 2017	Nov 30, 2017	Aug 13, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

May 4, 2017

Added

Nov 30, 2017

Modified

Aug 13, 2025

Description

It was found that due to the way rpcbind uses libtirpc (libntirpc), a memory leak can occur when parsing specially crafted XDR messages. An attacker sending thousands of messages to rpcbind could cause its memory usage to grow without bound, eventually causing it to be terminated by the OOM killer.

Solution

huawei-euleros-2_0_sp2-upgrade-rpcbind

References

CVE-2017-8779
https://attackerkb.com/topics/CVE-2017-8779
CWE-770
EULEROS-EulerOS-SA-2017-1103

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today