Not to be fixed
Created: May 14, 2013
Updated: Mar 5, 2016
Resolved Date: Jun 23, 2014
Previous ID: LIN3-22601
Found In Version: 6.0
Severity: Standard
Applicable for: Wind River Linux 6
Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-5029
Unknown
Unknown
