Wind River Support Network

HomeDefectsLIN9-5188

Fixed

LIN9-5188 : Security Advisory - binutils - CVE-2017-14129

Created: Sep 6, 2017 Updated: Dec 3, 2018

Resolved Date: Nov 13, 2017

Previous ID: LIN5-23577

Found In Version: 9.0.0.9

Fix Version: 9.0.0.12

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Build & Config

Description

The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (parse_comp_unit heap-based buffer over-read and application crash) via a crafted ELF file.

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14129

Other Downloads

Wind River Linux 9.0.0.12
Wind River Linux 9.0.0.13
Wind River Linux 9.0.0.14
Wind River Linux 9.0.0.15
Wind River Linux 9.0.0.16
Wind River Linux 9.0.0.17
Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2017-14129