Wind River Support Network

HomeDefectsLIN7-3463
Fixed

LIN7-3463 : Security Advisory - libxml2 - CVE-2015-1819

Created: Apr 16, 2015    Updated: Sep 8, 2018
Resolved Date: Apr 29, 2015
Previous ID: LIN4-32500
Found In Version: 7.0.0.3
Fix Version: 7.0.0.6
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

CVE-2015-1819 Enforce the reader to run in constant memory
One of the operation on the reader could resolve entities leading to the classic expansion issue. Make sure the buffer used for xmlreader operation is bounded. Introduce a new allocation type for the buffers for this effect. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1819

Other Downloads


CVEs


Live chat
Online