Wind River Support Network

HomeDefectsSCP7-311

Fixed

SCP7-311 : Security Advisory - linux - CVE-2015-8575

Created: Feb 13, 2016 Updated: Sep 8, 2018

Resolved Date: Apr 15, 2016

Found In Version: 7.0.0.12

Fix Version: 7.0.0.15

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Kernel

Description

The sco_sock_bind function in net/bluetooth/sco.c in the Linux kernel before 4.3.4 does not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted application.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8575

Other Downloads

Wind River Linux SCP 7.0.0.15
Wind River Linux SCP 7.0.0.16
Wind River Linux SCP 7.0.0.17
Wind River Linux SCP 7.0.0.18
Wind River Linux SCP 7.0.0.19
Wind River Linux SCP 7.0.0.20
Wind River Linux SCP 7.0.0.21
Wind River Linux SCP 7.0.0.22
Wind River Linux SCP 7.0.0.23
Wind River Linux SCP 7.0.0.24
Wind River Linux SCP 7.0.0.25
Wind River Linux SCP 7.0.0.26
Wind River Linux SCP 7.0.0.27
Wind River Linux SCP 7.0.0.28
Wind River Linux SCP 7.0.0.29
Wind River Linux SCP 7.0.0.30
Wind River Linux SCP 7.0.0.31