Wind River Support Network

HomeDefectsLIN7-6776

Fixed

LIN7-6776 : Security Advisory - libidn - CVE-2016-6261

Created: Sep 11, 2016 Updated: Sep 8, 2018

Resolved Date: Sep 13, 2016

Found In Version: 7.0.0.19

Fix Version: 7.0.0.20

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-6261

Other Downloads

Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-6261