Wind River Support Network

HomeDefectsLIN6-9759
Fixed

LIN6-9759 : Security Advisory - libxml2 - CVE-2015-1819

Created: Apr 16, 2015    Updated: Dec 3, 2018
Resolved Date: Apr 27, 2015
Previous ID: LIN4-32499
Found In Version: 6.0.0.18
Fix Version: 6.0.0.20
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

CVE-2015-1819 Enforce the reader to run in constant memory
One of the operation on the reader could resolve entities leading to the classic expansion issue. Make sure the buffer used for xmlreader operation is bounded. Introduce a new allocation type for the buffers for this effect. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1819

Other Downloads


Live chat
Online