Wind River Support Network

HomeDefectsLIN9-7119

Fixed

LIN9-7119 : Security Advisory - dhcp - CVE-2018-5732

Created: Jul 15, 2018 Updated: Oct 27, 2019

Resolved Date: Jul 24, 2018

Found In Version: 9.0.0.16

Fix Version: 9.0.0.17

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

Failure to properly bounds check a buffer used for processing DHCP options allows a malicious server (or an entity masquerading as a server) to cause a buffer overflow (and resulting crash) in dhclient by sending a response containing a specially constructed options section.

https://nvd.nist.gov/vuln/detail/CVE-2018-5732

Other Downloads

Wind River Linux 9.0.0.17
Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-5732