Wind River Support Network

HomeDefectsLIN9-4441
Fixed

LIN9-4441 : Security Advisory - glibc - CVE-2017-1000366

Created: Jun 14, 2017    Updated: Jul 26, 2021
Resolved Date: Aug 10, 2017
Found In Version: unknown
Fix Version: 9.0.0.8
Severity: Severe
Applicable for: Wind River Linux 9
Component/s: Toolchain

Description

This is an issue referred to as 'stack smash'.  See https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt for additional details.

Workaround

 glibc: Apply the attached preliminary patch to layers/oe-core after the project has been configured.

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube