Wind River Support Network

HomeDefectsLIN5-18772
Fixed

LIN5-18772 : Security Advisory - socat - CVE-2013-3571

Created: May 15, 2014    Updated: Dec 19, 2017
Resolved Date: May 26, 2014
Found In Version: 5.0.1.16
Fix Version: 5.0.1.16
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service (file descriptor consumption) via multiple request that are refused based on the (1) sourceport, (2) lowport, (3) range, or (4) tcpwrap restrictions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3571

Other Downloads


Live chat
Online