Wind River Support Network

HomeDefectsLIN7-7124

Fixed

LIN7-7124 : Security Advisory - busybox - CVE-2016-6301

Created: Dec 15, 2016 Updated: Sep 8, 2018

Resolved Date: Jan 5, 2017

Found In Version: 7.0.0.21

Fix Version: 7.0.0.23

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The recv_and_process_client_pkt function in networking/ntpd.c in busybox allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged NTP packet, which triggers a communication loop.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-6301

Other Downloads

Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-6301