Candidate: CVE-2010-4336
PublicDate: 2010-12-17 19:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4336
 http://www.debian.org/security/2010/dsa-2133
 http://collectd.org/news.shtml#news86
Description:
 The cu_rrd_create_file function (src/utils_rrdcreate.c) in collectd 4.x
 before 4.9.4 and before 4.10.2 allow remote attackers to cause a denial of
 service (assertion failure) via a packet with a timestamp whose value is 10
 or less, as demonstrated by creating RRD files using the (1) RRDtool and
 (2) RRDCacheD plugins.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605092
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_collectd:
upstream_collectd: released (4.9.4,4.10.2)
dapper_collectd: DNE
hardy_collectd: ignored (reached end-of-life)
karmic_collectd: ignored (reached end-of-life)
lucid_collectd: ignored (reached end-of-life)
maverick_collectd: ignored (reached end-of-life)
natty_collectd: not-affected (4.10.1-2.1)
oneiric_collectd: not-affected (4.10.1-2.1)
precise_collectd: not-affected (4.10.1-2.1)
quantal_collectd: not-affected (4.10.1-2.1)
raring_collectd: not-affected (4.10.1-2.1)
saucy_collectd: not-affected (4.10.1-2.1)
devel_collectd: not-affected (4.10.1-2.1)