Wind River Support Network

HomeDefectsLIN9-5890

Fixed

LIN9-5890 : Security Advisory - curl - CVE-2017-8816

Created: Nov 30, 2017 Updated: Dec 3, 2018

Resolved Date: Dec 4, 2017

Found In Version: 9.0.0.12

Fix Version: 9.0.0.13

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

The NTLM authentication feature in curl and libcurl before 7.57.0 on 32-bit platforms allows attackers to cause a denial of service (integer overflow and resultant buffer overflow, and application crash) or possibly have unspecified other impact via vectors involving long user and password fields.

https://nvd.nist.gov/vuln/detail/CVE-2017-8816

Other Downloads

Wind River Linux 9.0.0.13
Wind River Linux 9.0.0.14
Wind River Linux 9.0.0.15
Wind River Linux 9.0.0.16
Wind River Linux 9.0.0.17
Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2017-8816