Wind River Support Network

HomeDefectsLIN6-10797
Fixed

LIN6-10797 : Security Advisory - glibc - CVE-2015-8777

Created: Jan 28, 2016    Updated: Dec 3, 2018
Resolved Date: Mar 9, 2016
Found In Version: 6.0
Fix Version: 6.0.0.29
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Toolchain

Description

The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTER_GUARD environment variable. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8777

Other Downloads


Live chat
Online