Wind River Support Network

HomeDefectsLIN8-6780

Fixed

LIN8-6780 : Security Advisory - binutils - CVE-2017-9040

Created: May 25, 2017 Updated: Dec 3, 2018

Resolved Date: Oct 22, 2017

Found In Version: 8.0.0.17

Fix Version: 8.0.0.23

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

GNU Binutils 2017-04-03 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash), related to the process_mips_specific function in readelf.c, via a crafted ELF file that triggers a large memory-allocation attempt.

https://nvd.nist.gov/vuln/detail/CVE-2017-9040

Other Downloads

Wind River Linux 8.0.0.23
Wind River Linux 8.0.0.24
Wind River Linux 8.0.0.25
Wind River Linux 8.0.0.26
Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-9040