Wind River Support Network

HomeDefectsLIN8-6133

Fixed

LIN8-6133 : Security Advisory - libevent - CVE-2016-10195

Created: Mar 28, 2017 Updated: Dec 3, 2018

Resolved Date: Apr 1, 2017

Found In Version: 8.0.0.15

Fix Version: 8.0.0.16

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

The name_parse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the label_len variable, which triggers an out-of-bounds stack read.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10195

Other Downloads

Wind River Linux 8.0.0.16
Wind River Linux 8.0.0.17
Wind River Linux 8.0.0.18
Wind River Linux 8.0.0.19
Wind River Linux 8.0.0.20
Wind River Linux 8.0.0.21
Wind River Linux 8.0.0.22
Wind River Linux 8.0.0.23
Wind River Linux 8.0.0.24
Wind River Linux 8.0.0.25
Wind River Linux 8.0.0.26
Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2016-10195