Wind River Support Network

HomeDefectsLIN10-5422
Fixed

LIN10-5422 : Security Advisory - glibc - CVE-2019-7309

Created: Feb 14, 2019    Updated: Apr 2, 2019
Resolved Date: Mar 29, 2019
Found In Version: 10.17.41.1
Fix Version: 10.17.41.15
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Toolchain

Description

In the GNU C Library (aka glibc or libc6) through 2.29, the memcmp function for the x32 architecture can incorrectly return zero (indicating that the inputs are equal) because the RDX most significant bit is mishandled.

https://nvd.nist.gov/vuln/detail/CVE-2019-7309

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube