Wind River Support Network

HomeDefectsLIN7-7958

Fixed

LIN7-7958 : Security Advisory - bash - CVE-2016-0634

Created: Apr 12, 2017 Updated: Sep 8, 2018

Resolved Date: Apr 25, 2017

Found In Version: 7.0.0.24

Fix Version: 7.0.0.25

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

A vulnerability was found in a way bash expands the $HOSTNAME. Injecting the hostname with malicious code would cause it to run each time bash expanded \h in the prompt string.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0634

Other Downloads

Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-0634