Wind River Support Network

HomeDefectsLIN7-6183

Fixed

LIN7-6183 : Security Advisory - linux - CVE-2016-2053

Created: May 17, 2016 Updated: Sep 8, 2018

Resolved Date: Aug 30, 2016

Found In Version: 7.0.0.15

Fix Version: 7.0.0.20

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Kernel

Description

The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2053

Other Downloads

Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-2053