CVE-2016-6831

Priority
Description
The "process-execute" and "process-spawn" procedures did not free memory
correctly when the execve() call failed, resulting in a memory leak. This
could be abused by an attacker to cause resource exhaustion or a denial of
service. This affects all releases of CHICKEN up to and including 4.11 (it
will be fixed in 4.12 and 5.0, which are not yet released).
Notes
ratliffFixed in same upstream patch as CVE-2016-6830
Package
Upstream:needed
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was released [4.7.0-1+deb7u1build0.12.04.1])
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.12.0-0.1)
Ubuntu 19.10 (Eoan Ermine):not-affected (4.12.0-0.1)
Ubuntu 20.04 (Focal Fossa):not-affected (4.12.0-0.1)
More Information

Updated: 2020-04-24 03:33:09 UTC (commit d3f8a6ed481830fb100109a132bef581fc4176fe)