Vulnerability VU#485744 FlexNet lmgrd contains a buffer overflow vulnerability

Programmable Devices

CPLDs, FPGAs, SoC FPGAs, Configuration, and Transceivers

Vulnerability VU#485744 FlexNet lmgrd contains a buffer overflow vulnerability

1,215 Views

Hello

A buffer overflow vulnerability has been discovered in FlexNet Publisher license servers prior to version 11.13.1.1. This vulnerability affects both the license manager "lmgrd" and the vendor daemons

and may enable a remote attacker to execute arbitrary code in affected server hosts. For more information about this vulnerability see <https://www.kb.cert.org/vuls/id/485744> (https://www.kb.cert.org/vuls/id/485744).

I don't see any update to lmgrd/alterad on Altera's website (the latest edition is 11.11). Are they going to address this issue, and release a patched alterad (11.13.1.2 or later)?

thanks,

roozbeh

Link Copied

0 Replies

Community support is provided Monday to Friday. Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.