Wind River Support Network

HomeDefectsLIN6-7669

Fixed

LIN6-7669 : Security Advisory - php - CVE-2014-3981

Created: Jun 15, 2014 Updated: Dec 3, 2018

Resolved Date: Sep 18, 2014

Found In Version: 6.0

Fix Version: 6.0.0.13

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3981

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38