Wind River Support Network

HomeDefectsLIN7-9147

Fixed

LIN7-9147 : Security Advisory - linux - CVE-2017-16643

Created: Nov 13, 2017 Updated: Sep 8, 2018

Resolved Date: Dec 4, 2017

Found In Version: 7.0.0.26

Fix Version: 7.0.0.27

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Kernel

Description

The parse_hid_report_descriptor function in drivers/input/tablet/gtco.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.

https://nvd.nist.gov/vuln/detail/CVE-2017-16643

Other Downloads

Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2017-16643