Wind River Support Network

HomeDefectsLIN6-14741
Fixed

LIN6-14741 : Security Advisory - linux - CVE-2018-13406

Created: Jul 15, 2018    Updated: Mar 19, 2019
Resolved Date: Nov 18, 2018
Found In Version: 6.0.0.37
Fix Version: 6.0.0.38
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Kernel

Description

An integer overflow in the uvesafb_setcmap function in drivers/video/fbdev/uvesafb.c in the Linux kernel before 4.17.4 could result in local attackers being able to crash the kernel or potentially elevate privileges because kmalloc_array is not used.

https://nvd.nist.gov/vuln/detail/CVE-2018-13406

Other Downloads


Live chat
Online