Wind River Support Network

HomeDefectsLIN8-6896
Fixed

LIN8-6896 : Security Advisory - glibc - CVE-2017-1000366

Created: Jun 16, 2017    Updated: Dec 3, 2018
Resolved Date: Jun 25, 2017
Found In Version: 8.0.0.18
Fix Version: 8.0.0.19
Severity: Severe
Applicable for: Wind River Linux 8
Component/s: Toolchain

Description

This is an issue referred to as 'stack smash'.  See https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt for additional details.

Workaround

glibc: Apply the attached preliminary patch to layers/oe-core after the project has been configured.

Other Downloads

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube