Wind River Support Network

HomeDefectsLIN8-2634
Fixed

LIN8-2634 : Security Advisory - glibc - CVE-2015-8777

Created: Jan 28, 2016    Updated: Dec 3, 2018
Resolved Date: Feb 3, 2016
Found In Version: 8.0
Fix Version: 8.0.0.2
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Toolchain

Description

The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTER_GUARD environment variable. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8777

Other Downloads


CVEs


Live chat
Online