Amazon Linux AMI Security Advisory: ALAS-2013-199
Advisory Release Date: 2014-09-15 23:09 Pacific
A flaw was found in the way libtirpc decoded RPC requests. A specially-crafted RPC request could cause libtirpc to attempt to free a buffer provided by an application using the library, even when the buffer was not dynamically allocated. This could cause an application using libtirpc, such as rpcbind, to crash. (CVE-2013-1950 )
Run yum update libtirpc to update your system.