CVE-2012-3421

EPSS 2.5%

Published: 8/27/2012Modified: 4/28/2026

Description

The pduread function in pdu.c in libpcp in Performance Co-Pilot (PCP) before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service (pmcd hang) by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."

Affected packages (1)

Debian/pcpfrom 0, < 3.6.5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-3421