Wind River Support Network

HomeDefectsLIN9-7494

Fixed

LIN9-7494 : Security Advisory - linux - CVE-2018-16276

Created: Sep 16, 2018 Updated: Dec 3, 2018

Resolved Date: Oct 9, 2018

Found In Version: 9.0.0.17

Fix Version: 9.0.0.18

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Kernel

Description

An issue was discovered in yurex_read in drivers/usb/misc/yurex.c in the Linux kernel before 4.17.7. Local attackers could use user access read/writes with incorrect bounds checking in the yurex USB driver to crash the kernel or potentially escalate privileges.

https://nvd.nist.gov/vuln/detail/CVE-2018-16276

Other Downloads

Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-16276