Wind River Support Network

HomeDefectsLIN8-9233

Fixed

LIN8-9233 : WRL8 - Sudo CVE-2016-7076 , CVE-2016-7091

Created: May 29, 2018 Updated: Feb 10, 2020

Resolved Date: Jun 19, 2018

Found In Version: 8.0.0.25

Fix Version: 8.0.0.27

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

Sudo sudo_noexec.so Bypass Vulnerability
CVE-2016-7076
more details at https://bugzilla.redhat.com/show_bug.cgi?id=1384982

Sudo INPUTRC Information Disclosure Vulnerability
CVE-2016-7091
more details at https://bugzilla.redhat.com/show_bug.cgi?id=1339935

Could you please provide patches above CVEs for RCPL 25.

No internal defect relations with those CVES.

Other Downloads

Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34