Wind River Support Network

HomeDefectsSCP6-558

Fixed

SCP6-558 : Security Advisory - linux - CVE-2014-9644

Created: Mar 29, 2015 Updated: Dec 3, 2018

Resolved Date: May 25, 2015

Previous ID: LIN4-32379

Found In Version: 6.0.0.11

Fix Version: 6.0.0.21

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Kernel

Description

The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AF_ALG socket with a parenthesized module template expression in the salg_name field, as demonstrated by the vfat(aes) expression, a different vulnerability than CVE-2013-7421.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9644

Other Downloads

Wind River Linux SCP 6.0.0.21
Wind River Linux SCP 6.0.0.22
Wind River Linux SCP 6.0.0.23
Wind River Linux SCP 6.0.0.24
Wind River Linux SCP 6.0.0.25
Wind River Linux SCP 6.0.0.26
Wind River Linux SCP 6.0.0.27
Wind River Linux SCP 6.0.0.28
Wind River Linux SCP 6.0.0.30
Wind River Linux SCP 6.0.0.31
Wind River Linux SCP 6.0.0.32
Wind River Linux SCP 6.0.0.33
Wind River Linux SCP 6.0.0.34
Wind River Linux SCP 6.0.0.35
Wind River Linux SCP 6.0.0.36
Wind River Linux SCP 6.0.0.37
Wind River Linux SCP 6.0.0.38