Wind River Support Network

HomeDefectsLIN7-4638
Fixed

LIN7-4638 : Security Advisory - polarssl - CVE-2014-9744

Created: Aug 30, 2015    Updated: Sep 8, 2018
Resolved Date: Sep 17, 2015
Found In Version: 7.0.0.8
Fix Version: 7.0.0.10
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

Memory leak in PolarSSL before 1.3.9 allows remote attackers to cause a denial of service (memory consumption) via a large number of ClientHello messages.  NOTE: this identifier was SPLIT from CVE-2014-8628 per ADT3 due to different affected versions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9744

Other Downloads


CVEs


Live chat
Online