Wind River Support Network

HomeDefectsLIN5-20147
Fixed

LIN5-20147 : Security Advisory - mysql & php - CVE-2015-2305

Created: Feb 26, 2015    Updated: Dec 19, 2017
Resolved Date: Feb 27, 2015
Previous ID: LIN4-32322
Found In Version: 5.0.1.24
Fix Version: 5.0.1.24
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

A public disclosure of a heap overflow in a regex C library originally written by Henry Spencer, which appears to be embedded in the code base of several projects. 

https://guidovranken.wordpress.com/2015/02/04/full-disclosure-heap-overflow-in-h-spencers-regex-library-on-32-bit-systems/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2305

Other Downloads


Live chat
Online