Wind River Support Network

HomeDefectsLIN8-8802

Fixed

LIN8-8802 : Security Advisory - unzip - CVE-2018-1000035

Created: Feb 27, 2018 Updated: Dec 3, 2018

Resolved Date: Sep 13, 2018

Found In Version: 8.0.0.24

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

A heap-based buffer overflow exists in Info-Zip UnZip version <= 6.00 in the processing of password-protected archives that allows an attacker to perform a denial of service or to possibly achieve code execution.

https://nvd.nist.gov/vuln/detail/CVE-2018-1000035

Other Downloads

Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2018-1000035