Wind River Support Network

HomeDefectsLIN8-9732

Fixed

LIN8-9732 : Security Advisory - libtirpc - CVE-2018-14622

Created: Aug 31, 2018 Updated: Dec 10, 2018

Resolved Date: Sep 13, 2018

Found In Version: 8.0.0.27

Fix Version: 8.0.0.28

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

A flaw was found in libtirpc. The return value of makefd_xprt was used without checking for NULL in svc_vc.c, leading to a null pointer dereference / segfault if the maximum number of available file descriptors was exhausted.

https://nvd.nist.gov/vuln/detail/CVE-2018-14622

Other Downloads

Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2018-14622