Glibc 2.23 library - CVE-2018-11237

cancel
Showing results for 
Search instead for 
Did you mean: 

Glibc 2.23 library - CVE-2018-11237

606 Views
niranjanbc
Contributor IV

there is a CVE "CVE-2018-11237" reported for Glibc library, which is explained below. does this CVE is applicable to your NXP chips, in our product we are using Imx6solox

CVE Description:

An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupper.

Thanks

Niranjan

Labels (4)
Tags (3)
2 Replies

434 Views
Bio_TICFSL
NXP TechSupport
NXP TechSupport

Hello niranjanbc,

Not applicable to MX6SoloX,

Regards

434 Views
niranjanbc
Contributor IV

Thanks

0 Kudos