Wind River Support Network

HomeDefectsLIN8-2703
Fixed

LIN8-2703 : Security Advisory - glibc - CVE-2015-8776

Created: Feb 10, 2016    Updated: Dec 3, 2018
Resolved Date: Feb 29, 2016
Found In Version: 8.0
Fix Version: 8.0.0.3
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Toolchain

Description

See Yocto Project bug 8980
glibc bug 18985

The bug appears to affect back to glibc 2.19. 

Passing out of range data to strftime() causes a segfault 
https://sourceware.org/bugzilla/show_bug.cgi?id=18985 

Out-of-range time values passed to the strftime function may cause it to 
crash, leading to a denial of service, or potentially disclosure 
information.

Other Downloads

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube