Wind River Support Network

HomeDefectsLIN6-9471

Fixed

LIN6-9471 : Security Advisory - glibc - CVE-2014-9402

Created: Feb 25, 2015 Updated: Dec 3, 2018

Resolved Date: May 8, 2015

Found In Version: 6.0.0.18

Fix Version: 6.0.0.20

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Toolchain

Description

The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Service Switch configuration is enabled, allows remote attackers to cause a denial of service (infinite loop) by sending a positive answer while a network name is being process.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9402

Other Downloads

binary-toolchain-4.8-44
binary-toolchain-4.8-45
binary-toolchain-4.8-47
Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38