Wind River Support Network

HomeDefectsLIN9-7035

Fixed

LIN9-7035 : Security Advisory - python - CVE-2018-1060

Created: Jun 29, 2018 Updated: Dec 3, 2018

Resolved Date: Sep 19, 2018

Found In Version: 9.0.0.16

Fix Version: 9.0.0.18

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

python before versions 2.7.15, 3.4.9, 3.5.6 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacker could use this flaw to cause denial of service.

https://nvd.nist.gov/vuln/detail/CVE-2018-1060

Other Downloads

Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-1060