Upstream information

CVE-2016-4478 at MITRE


Buffer overflow in the xmlrpc_char_encode function in modules/transport/xmlrpc/xmlrpclib.c in Atheme before 7.2.7 allows remote attackers to cause a denial of service via vectors related to XMLRPC response encoding.

SUSE information

Overall state of this security issue: Does not affect SUSE products

SUSE Bugzilla entry: 978170 [RESOLVED / FIXED]

SUSE Security Advisories:


List of released packages

Product(s) Fixed package version(s) References
openSUSE Tumbleweed
  • atheme >= 7.2.7-1.1
  • atheme-devel >= 7.2.7-1.1
  • libathemecore1 >= 7.2.7-1.1
openSUSE Tumbleweed GA atheme-7.2.7-1.1

SUSE Timeline for this CVE

CVE page created: Fri Oct 7 12:47:40 2022
CVE page last modified: Thu Dec 7 13:11:24 2023