The following defect(s) have been fixed in this cumulative patch for the Wind River nss:
WIND00177759 Security Advisory - nss - CVE-2009-2404
---------------------------------------------------------------------------------------------------------------------------------------
Change List:
layers/wrll-wrlinux/dist/nss/patches/rpm_patches.list
layers/wrll-wrlinux/dist/nss/patches/nss-wr-integration.patch
layers/wrll-wrlinux/dist/nss/patches/fix-regexp-heap-overflow_CVE-2009-2404.patch
Wind River Linux 3.0 Update pack 1 is installed. This is dependent on templates, URL: https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?docId=27977&contentId=020952
1. Unzip this patch under [install_dir]/updates.
2. From the [install_dir]/updates directory, run the command "../maintenance/wrInstaller/x86-linux2/wrInstaller".
3. Follow the instructions for installing the point patch.
4. This is a source only patch so you will have to rebuild the
nss package. This can be done by executing the command "make
-C build nss.distclean" followed by "make -C build
nss.rebuild"
5. Run "make fs" next
6. Upload the kernel and rootfs into the target and boot it up.
