The following defect(s) have been fixed in this cumulative patch for the Wind River util-linux:
WIND00269524 Security Advisory - util-linux - CVE-2011-1677
WIND00269523 Security Advisory - util-linux - CVE-2011-1676
-----------------------------------------------------------------------------
Change List:
/wrlinux/dist/util-linux/Makefile
/wrlinux/dist/util-linux/patches/rpm_patches.list
/wrlinux/dist/util-linux/patches/util-linux-2.13-CVE-2011-1677.patch
/wrlinux/dist/util-linux/patches/util-linux-wr-integration.patch
Requires Wind River Linux 2.0 Update Pack 4 (2.0.4) to be installed
1. Unzip this patch under [install_dir]/updates
2. From the [install_dir]/updates directory, run the command "../maintenance/mtool/mtool_linux"
3. Follow the instructions for installing the point patch.
4. This is a source only patch so you will have to rebuild the util-linux package. This can be done by executing the command "make -C build util-linux.distclean" followed by "make -C build util-linux.rebuild"
5. Run "make fs" next
6. Upload the kernel and rootfs into the target and boot it up.
DATE: 13 Dec 2011
REVISION: Add file WRL_2_0_4-base-tgt-util-linux-20111211-spin1.zip and includes defect WIND00269524
