Wind River Support Network

HomeDefectsSCP7-437

Fixed

SCP7-437 : Security Advisory - linux - CVE-2016-6136

Created: Aug 14, 2016 Updated: Sep 8, 2018

Resolved Date: Oct 26, 2016

Found In Version: 7.0.0.18

Fix Version: 7.0.0.22

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Kernel

Description

Race condition in the audit_log_single_execve_arg function in kernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended character-set restrictions or disrupt system-call auditing by changing a certain string, aka a double fetch vulnerability.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-6136

Other Downloads

Wind River Linux SCP 7.0.0.22
Wind River Linux SCP 7.0.0.23
Wind River Linux SCP 7.0.0.24
Wind River Linux SCP 7.0.0.25
Wind River Linux SCP 7.0.0.26
Wind River Linux SCP 7.0.0.27
Wind River Linux SCP 7.0.0.28
Wind River Linux SCP 7.0.0.29
Wind River Linux SCP 7.0.0.30
Wind River Linux SCP 7.0.0.31