Wind River Support Network

HomeDefectsLIN10-3353
Fixed

LIN10-3353 : Security Advisory - binutils - CVE-2018-6759

Created: Feb 27, 2018    Updated: Dec 3, 2018
Resolved Date: Jun 5, 2018
Found In Version: 10.17.41.1
Fix Version: 10.17.41.8
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

The bfd_get_debug_link_info_1 function in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, has an unchecked strnlen operation. Remote attackers could leverage this vulnerability to cause a denial of service (segmentation fault) via a crafted ELF file.

https://nvd.nist.gov/vuln/detail/CVE-2018-6759

Other Downloads


CVEs


Live chat
Online