Wind River Support Network

HomeDefectsLIN6-12716
Fixed

LIN6-12716 : Security Advisory - binutils - CVE-2017-7227

Created: Mar 28, 2017    Updated: Dec 3, 2018
Resolved Date: Jun 19, 2017
Found In Version: 6.0.0.32
Fix Version: 6.0.0.34
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

GNU linker (ld) in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7227

Other Downloads


Live chat
Online