Wind River Support Network

HomeDefectsLIN7-6911

Fixed

LIN7-6911 : Security Advisory - libarchive - CVE-2016-4809

Created: Oct 16, 2016 Updated: Sep 8, 2018

Resolved Date: Oct 20, 2016

Found In Version: 7.0

Fix Version: 7.0.0.21

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a CPIO archive with a large symlink.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4809

Other Downloads

Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-4809