The following defect(s) have been fixed in this cumulative patch for the Wind River apache-ssl:
WIND00200924 Security Advisory - apache - CVE-2010-0010
WIND00311483 Security Advisory - Apache - CVE-2011-3368
WIND00322939 Security Advisory - Apache - CVE-2011-4317
----------------------------------------------------------------------------------------
Change List:
/wrlinux/dist/apache-ssl/patches/patches.list
/wrlinux/dist/apache-ssl/patches/apache_1.3.37-CVE-2010-0010.patch
/wrlinux/dist/apache-ssl/patches/apache-fix-CVE-2011-3368.patch
/wrlinux/dist/apache-ssl/patches/apache-fix-CVE-2011-4317.patch
/wrlinux/dist/apache-ssl/Makefile
/wrlinux/dist/apache-ssl/apache-ssl.spec
Requires Wind River Linux 2.0 Update Pack 4 (2.0.4) to be installed.
1. Unzip this patch under [install_dir]/updates
2. From the [install_dir]/updates directory, run the command "../maintenance/mtool/mtool_linux"
3. Follow the instructions for installing the point patch.
4. This is a source only patch so you will have to rebuild the
This can be done by executing the command "make -C build
.distclean"followed by "make -C build
5. Run "make fs" next
6. Upload the kernel and rootfs into the target and boot it up
DATE: 21 Dec 2011
REVISION: file WRL_2_0_4-base-tgt-apache-ssl-20111116-spin1.zip replaced with WRL_2_0_4-base-tgt-apache-ssl-20111220-spin1.zip and includes fix to defect WIND00322939
DATE: 18 Nov 2011
REVISION: file WRL_2_0_4-base-tgt-apache-ssl-20100303-spin1.zip replaced with WRL_2_0_4-base-tgt-apache-ssl-20111116-spin1.zip and includes fix to defect WIND00311483
DATE: 08 Nov 2011
REVISION: Update "Change List" section
DATE: 08 March 2010
REVISION: Add file WRL_2_0_4-base-tgt-apache-ssl-20100303-spin1.zip and includes fix to defect WIND00200924
