Wind River Support Network

HomeDefectsLIN6-7425

Fixed

LIN6-7425 : Security Advisory - dpkg - CVE-2014-0471

Created: May 15, 2014 Updated: Dec 3, 2018

Resolved Date: Jun 5, 2014

Found In Version: 6.0.0.8

Fix Version: 6.0.0.8

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to C-style filename quoting.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0471

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38