Wind River Support Network

HomeDefectsLIN7-9981

Fixed

LIN7-9981 : Security Advisory - znc - CVE-2018-14055

Created: Jul 15, 2018 Updated: Oct 26, 2018

Resolved Date: Aug 14, 2018

Found In Version: 7.0.0.28

Fix Version: 7.0.0.29

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

ZNC before 1.7.1-rc1 does not properly validate untrusted lines coming from the network, allowing a non-admin user to escalate his privilege and inject rogue values into znc.conf.

https://nvd.nist.gov/vuln/detail/CVE-2018-14055

Other Downloads

Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2018-14055