Wind River Support Network

HomeDefectsLIN6-9759

Fixed

LIN6-9759 : Security Advisory - libxml2 - CVE-2015-1819

Created: Apr 16, 2015 Updated: Dec 3, 2018

Resolved Date: Apr 27, 2015

Previous ID: LIN4-32499

Found In Version: 6.0.0.18

Fix Version: 6.0.0.20

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

CVE-2015-1819 Enforce the reader to run in constant memory
One of the operation on the reader could resolve entities leading to the classic expansion issue. Make sure the buffer used for xmlreader operation is bounded. Introduce a new allocation type for the buffers for this effect. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1819

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38