Wind River Support Network

HomeDefectsLIN6-9038

Fixed

LIN6-9038 : Security Advisory - glibc - CVE-2014-6040

Created: Dec 14, 2014 Updated: Dec 3, 2018

Resolved Date: Mar 18, 2015

Found In Version: 6.0

Fix Version: 6.0.0.19

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Toolchain

Description

GNU C Library (aka glibc) before 2.20 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via a multibyte character value of 0xffff to the iconv function when converting (1) IBM933, (2) IBM935, (3) IBM937, (4) IBM939, or (5) IBM1364 encoded data to UTF-8.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6040

Other Downloads

binary-toolchain-4.8-43
binary-toolchain-4.8-44
binary-toolchain-4.8-45
binary-toolchain-4.8-47
Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38