Wind River Support Network

HomeDefectsLIN7-4982

Fixed

LIN7-4982 : Security Advisory - ntp - CVE-2015-7853

Created: Oct 21, 2015 Updated: Sep 8, 2018

Resolved Date: Oct 27, 2015

Previous ID: LIN4-33058

Found In Version: 7.0.0.9

Fix Version: 7.0.0.11

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

A potential buffer overflow vulnerability exists in the refclock of ntpd. An invalid length provided by a hardware reference clock could cause a buffer overflow potentially resulting in memory being modified. A malicious reflock could provide a negative length to trigger this vulnerability.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7853

Other Downloads

Wind River Linux 7.0.0.14
Wind River Linux 7.0.0.15
Wind River Linux 7.0.0.16
Wind River Linux 7.0.0.17
Wind River Linux 7.0.0.18
Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2015-7853