Wind River Support Network

HomeDefectsLIN6-10836
Fixed

LIN6-10836 : Security Advisory - glibc - CVE-2014-9761

Created: Feb 13, 2016    Updated: Dec 3, 2018
Resolved Date: Mar 9, 2016
Previous ID: LIN7-5600
Found In Version: 6.0.0.27
Fix Version: 6.0.0.29
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Toolchain

Description

See Yocto Project defect 8980
glibc defect 16962

nan function unbounded stack allocation
https://sourceware.org/bugzilla/show_bug.cgi?id=16962

A stack overflow (unbounded alloca) can cause applications which process
long strings with the nan function to crash or, potentially, execute
arbitrary code.

Other Downloads


Live chat
Online