Wind River Support Network

HomeDefectsLIN9-7044

Fixed

LIN9-7044 : Security Advisory - python - CVE-2018-1061

Created: Jun 29, 2018 Updated: Dec 3, 2018

Resolved Date: Aug 10, 2018

Found In Version: 9.0.0.16

Fix Version: 9.0.0.18

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

python before versions 2.7.15, 3.4.9, 3.5.6 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

https://nvd.nist.gov/vuln/detail/CVE-2018-1061

Other Downloads

Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-1061