Wind River Support Network

Description

A DTLS memory leak from zero-length fragments was found. By sending carefully crafted DTLS packets an attacker could cause OpenSSL to leak memory. This could lead to a Denial of Service attack. (original advisory). Reported by Adam Langley (Google). 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3507

Fixed in OpenSSL 1.0.1i (Affected 1.0.1h, 1.0.1g, 1.0.1f, 1.0.1e, 1.0.1d, 1.0.1c, 1.0.1b, 1.0.1a, 1.0.1) 
Fixed in OpenSSL 1.0.0n (Affected 1.0.0m, 1.0.0l, 1.0.0k, 1.0.0j, 1.0.0i, 1.0.0g, 1.0.0f, 1.0.0e, 1.0.0d, 1.0.0c, 1.0.0b, 1.0.0a) 
Fixed in OpenSSL 0.9.8zb (Affected 0.9.8za, 0.9.8y, 0.9.8x, 0.9.8w, 0.9.8v, 0.9.8u, 0.9.8t, 0.9.8s, 0.9.8r, 0.9.8q, 0.9.8p, 0.9.8o) 

Other Downloads

• Wind River Linux SCP 6.0.0.10
• Wind River Linux SCP 6.0.0.12
• Wind River Linux SCP 6.0.0.13
• Wind River Linux SCP 6.0.0.14
• Wind River Linux SCP 6.0.0.15
• Wind River Linux SCP 6.0.0.16
• Wind River Linux SCP 6.0.0.17
• Wind River Linux SCP 6.0.0.18
• Wind River Linux SCP 6.0.0.19
• Wind River Linux SCP 6.0.0.20
• Wind River Linux SCP 6.0.0.21
• Wind River Linux SCP 6.0.0.22
• Wind River Linux SCP 6.0.0.23
• Wind River Linux SCP 6.0.0.24
• Wind River Linux SCP 6.0.0.25
• Wind River Linux SCP 6.0.0.26
• Wind River Linux SCP 6.0.0.27
• Wind River Linux SCP 6.0.0.28
• Wind River Linux SCP 6.0.0.30
• Wind River Linux SCP 6.0.0.31
• Wind River Linux SCP 6.0.0.32
• Wind River Linux SCP 6.0.0.33
• Wind River Linux SCP 6.0.0.34
• Wind River Linux SCP 6.0.0.35
• Wind River Linux SCP 6.0.0.36
• Wind River Linux SCP 6.0.0.37
• Wind River Linux SCP 6.0.0.38