The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o).
Find out more about CVE-2018-0737 from the MITRE-CVE dictionary and NIST NVD
Login may be required to access defects or downloads.
Product Name | Status | Defect | Fixed | Downloads |
---|---|---|---|---|
Linux | ||||
Wind River Linux LTS 17 | Fixed |
LIN10-3832 |
10.17.41.7 |
Wind River Linux LTS 10.17.41.7 Wind River Linux LTS 10.17.41.8 Wind River Linux LTS 10.17.41.9 Wind River Linux LTS 10.17.41.10 Wind River Linux LTS 10.17.41.11 Wind River Linux LTS 10.17.41.12 Wind River Linux LTS 10.17.41.13 Wind River Linux LTS 10.17.41.14 Wind River Linux LTS 10.17.41.15 Wind River Linux LTS 10.17.41.16 Wind River Linux LTS 10.17.41.17 Wind River Linux LTS 10.17.41.18 Wind River Linux LTS 10.17.41.20 Wind River Linux LTS 10.17.41.21 Wind River Linux LTS 10.17.41.22 Wind River Linux LTS 10.17.41.23 Wind River Linux LTS 10.17.41.24 Wind River Linux LTS 10.17.41.25 Wind River Linux LTS 10.17.41.26 Wind River Linux LTS 10.17.41.27 |
Wind River Linux 8 | Fixed |
LIN8-9115 |
8.0.0.26 | -- |
Wind River Linux 9 | Fixed |
LIN9-6793 |
9.0.0.16 | -- |
Wind River Linux 7 | Fixed | -- | 7.0.0.29 | -- |
Wind River Linux LTS 21 | Not Vulnerable | -- | -- | -- |
Wind River Linux LTS 22 | Not Vulnerable | -- | -- | -- |
Wind River Linux LTS 18 | Not Vulnerable | -- | -- | -- |
Wind River Linux LTS 19 | Not Vulnerable | -- | -- | -- |
Wind River Linux CD release | Not Vulnerable | -- | -- | -- |
Wind River Linux 6 | Fixed | -- | 6.0.0.37 | -- |
Wind River Linux LTS 23 | Not Vulnerable | -- | -- | -- |
Wind River Linux LTS 24 | Not Vulnerable | -- | -- | -- |
VxWorks | ||||
VxWorks 7 | Fixed | -- | openSSL-1.0.2p.0 | -- |
VxWorks 6.9 | Fixed | -- | 6.9.4.11 | -- |
Helix Virtualization Platform Cert Edition | ||||
Helix Virtualization Platform Cert Edition | Not Vulnerable | -- | -- | -- |
eLxr | ||||
eLxr 12 | Not Vulnerable | -- | -- | -- |
Wind River Studio Cloud Platform |
Product Name | Status | Defect | Fixed | Downloads |
---|