Wind River Support Network

Description

A Double Free was found when processing DTLS packets. An attacker can force an error condition which causes openssl to crash whilst processing DTLS packets due to memory being freed twice. This could lead to a Denial of Service attack. (original advisory). Reported by Adam Langley and Wan-Teh Chang (Google). 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3505

Fixed in OpenSSL 1.0.1i (Affected 1.0.1h, 1.0.1g, 1.0.1f, 1.0.1e, 1.0.1d, 1.0.1c, 1.0.1b, 1.0.1a, 1.0.1) 
Fixed in OpenSSL 1.0.0n (Affected 1.0.0m, 1.0.0l, 1.0.0k, 1.0.0j, 1.0.0i, 1.0.0g, 1.0.0f, 1.0.0e, 1.0.0d, 1.0.0c, 1.0.0b, 1.0.0a, 1.0.0) 
Fixed in OpenSSL 0.9.8zb (Affected 0.9.8za, 0.9.8y, 0.9.8x, 0.9.8w, 0.9.8v, 0.9.8u, 0.9.8t, 0.9.8s, 0.9.8r, 0.9.8q, 0.9.8p, 0.9.8o, 0.9.8n, 0.9.8m) 

Other Downloads

• Wind River Linux SCP 6.0.0.10
• Wind River Linux SCP 6.0.0.12
• Wind River Linux SCP 6.0.0.13
• Wind River Linux SCP 6.0.0.14
• Wind River Linux SCP 6.0.0.15
• Wind River Linux SCP 6.0.0.16
• Wind River Linux SCP 6.0.0.17
• Wind River Linux SCP 6.0.0.18
• Wind River Linux SCP 6.0.0.19
• Wind River Linux SCP 6.0.0.20
• Wind River Linux SCP 6.0.0.21
• Wind River Linux SCP 6.0.0.22
• Wind River Linux SCP 6.0.0.23
• Wind River Linux SCP 6.0.0.24
• Wind River Linux SCP 6.0.0.25
• Wind River Linux SCP 6.0.0.26
• Wind River Linux SCP 6.0.0.27
• Wind River Linux SCP 6.0.0.28
• Wind River Linux SCP 6.0.0.30
• Wind River Linux SCP 6.0.0.31
• Wind River Linux SCP 6.0.0.32
• Wind River Linux SCP 6.0.0.33
• Wind River Linux SCP 6.0.0.34
• Wind River Linux SCP 6.0.0.35
• Wind River Linux SCP 6.0.0.36
• Wind River Linux SCP 6.0.0.37
• Wind River Linux SCP 6.0.0.38