Wind River Support Network

HomeDefectsLIN1018-3534
Fixed

LIN1018-3534 : Security Advisory - glibc - CVE-2019-7309

Created: Feb 14, 2019    Updated: Apr 26, 2019
Resolved Date: Apr 22, 2019
Found In Version: unknown
Fix Version: 10.18.44.6
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Toolchain

Description

In the GNU C Library (aka glibc or libc6) through 2.29, the memcmp function for the x32 architecture can incorrectly return zero (indicating that the inputs are equal) because the RDX most significant bit is mishandled.

https://nvd.nist.gov/vuln/detail/CVE-2019-7309

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube