Multiple memory leaks in Performance Co-Pilot (PCP) before 3.6.5 allow remote attackers to cause a denial of service (memory consumption or daemon crash) via a large number of PDUs with (1) a crafted context number to the DoFetch function in pmcd/src/dofetch.c or (2) a negative type value to the __pmGetPDU function in libpcp/src/pdu.c.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_name": "libpcp-gui2", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-gui2-dev", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-import-perl", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-import1", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-import1-dev", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-logsummary-perl", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-mmv-perl", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-mmv1", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-mmv1-dev", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-pmda-perl", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-pmda3", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-pmda3-dev", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-trace2", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp-trace2-dev", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp3", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "libpcp3-dev", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "pcp", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "pcp-import-collectl2pcp", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "pcp-import-iostat2pcp", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "pcp-import-mrtg2pcp", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "pcp-import-sar2pcp", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "pcp-import-sheet2pcp", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "pcp-testsuite", "binary_version": "3.8.12ubuntu1" }, { "binary_name": "python-pcp", "binary_version": "3.8.12ubuntu1" } ] }