Wind River Support Network

HomeDefectsLIN9-5187

Fixed

LIN9-5187 : Security Advisory - binutils - CVE-2017-14130

Created: Sep 6, 2017 Updated: Dec 3, 2018

Resolved Date: Nov 13, 2017

Previous ID: LIN5-23573

Found In Version: 9.0.0.9

Fix Version: 9.0.0.12

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Build & Config

Description

The _bfd_elf_parse_attributes function in elf-attrs.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (_bfd_elf_attr_strdup heap-based buffer over-read and application crash) via a crafted ELF file.

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14130

Other Downloads

Wind River Linux 9.0.0.12
Wind River Linux 9.0.0.13
Wind River Linux 9.0.0.14
Wind River Linux 9.0.0.15
Wind River Linux 9.0.0.16
Wind River Linux 9.0.0.17
Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2017-14130