Wind River Support Network

HomeDefectsLIN9-6767
Fixed

LIN9-6767 : Security Advisory - postfix - CVE-2017-10140

Created: May 1, 2018    Updated: Dec 3, 2018
Resolved Date: May 14, 2018
Found In Version: 9.0.0.15
Fix Version: 9.0.0.16
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and later, related to reading settings from DB_CONFIG in the current directory.

https://nvd.nist.gov/vuln/detail/CVE-2017-10140

Other Downloads


CVEs


Live chat
Online