Wind River Support Network

HomeDefectsLIN5-23117
Fixed

LIN5-23117 : Security Advisory - linux - CVE-2017-7487

Created: May 25, 2017    Updated: May 29, 2018
Resolved Date: Jul 20, 2017
Found In Version: 5.0.1.39
Fix Version: 5.0.1.41
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Kernel

Description

The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel through 4.11.1 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a failed SIOCGIFADDR ioctl call for an IPX interface.

https://nvd.nist.gov/vuln/detail/CVE-2017-7487

Other Downloads


Live chat
Online