SUSE-SU-2026:22259-1: moderate: Security update for rpcbind
SLE-UPDATES
null at suse.de
Mon Jun 29 16:35:27 UTC 2026
# Security update for rpcbind
Announcement ID: SUSE-SU-2026:22259-1
Release Date: 2026-06-22T14:41:38Z
Rating: moderate
References:
* bsc#1117217
* bsc#1181400
* bsc#1267212
Affected Products:
* SUSE Linux Micro 6.2
An update that has three fixes can now be installed.
## Description:
This update for rpcbind fixes the following issues
* Update to rpcbind 1.2.9 (bsc#1267212) https://lore.kernel.org/linux-
nfs/5cad3ab4-d24a-45fa-b1e9-d57b2c47a5e4 at redhat.com/
* rpcinfo: stack buffer overflow in rpcinfo rpcbaddrlist()
* rpcbind: Stop unauthenticated oversized allocation in PMAPPROC_CALLIT decode
* rpcbind: fix memory leak in read_warmstart()
* rpcbind: fix memory leaks in network_init()
* rpcbind: fix memory leak in init_transport()
* Added -v (print version and compile flags)
* rpcinfo: Removed a number of "old-style function definition" warnings
* man/rpcbind: Update list of options
* Comment out ListenStream=@/run/rpcbind.sock
* [nfs/nfs-utils/rpcbind] rpcbind: avoid dereferencing NULL from realloc()
* systemd/rpcbind.service.in: Add various hardenings options
* man/rpcbind: Add Files section to manpage
* Moved rpcbind.lock and default configs to /run instead of /var/run
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Micro 6.2
zypper in -t patch SUSE-SL-Micro-6.2-1031=1
## Package List:
* SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64)
* rpcbind-debugsource-1.2.9-160000.1.1
* rpcbind-debuginfo-1.2.9-160000.1.1
* rpcbind-1.2.9-160000.1.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1117217
* https://bugzilla.suse.com/show_bug.cgi?id=1181400
* https://bugzilla.suse.com/show_bug.cgi?id=1267212
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20260629/ebd24567/attachment.htm>
More information about the sle-updates
mailing list