Wind River Support Network

HomeDefectsLIN5-21334
Fixed

LIN5-21334 : Security Advisory - xerces-c - CVE-2016-0729

Created: Apr 13, 2016    Updated: May 29, 2018
Resolved Date: May 5, 2016
Found In Version: 5.0.1.35
Fix Version: 5.0.1.36
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

Multiple buffer overflows in (1) internal/XMLReader.cpp, (2) util/XMLURL.cpp, and (3) util/XMLUri.cpp in the XML Parser library in Apache Xerces-C before 3.1.3 allow remote attackers to cause a denial of service (segmentation fault or memory corruption) or possibly execute arbitrary code via a crafted document.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0729

Other Downloads


Live chat
Online