Wind River Support Network

HomeDefectsLIN8-4620
Fixed

LIN8-4620 : Security Advisory - openssl - CVE-2016-6302

Created: Sep 1, 2016    Updated: Dec 3, 2018
Resolved Date: Sep 11, 2016
Found In Version: 8.0
Fix Version: 8.0.0.10
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

It was found that if a ticket callback changes the HMAC digest to SHA512 the existing sanity checks are not sufficient and an attacker could perform a DoS attack with a malformed ticket.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6302

Security Notices


Other Downloads


CVEs


Live chat
Online