Wind River Support Network

HomeDefectsLIN5-22813
Fixed

LIN5-22813 : Security Advisory - binutils - CVE-2017-7227

Created: Mar 28, 2017    Updated: May 29, 2018
Resolved Date: Aug 16, 2017
Found In Version: 5.0.1.39
Fix Version: 5.0.1.41
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

GNU linker (ld) in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7227

Other Downloads


Live chat
Online