Wind River Support Network

HomeDefectsLIN10-1692
Fixed

LIN10-1692 : Security Advisory - openssl - CVE-2017-3735

Created: Sep 6, 2017    Updated: Dec 3, 2018
Resolved Date: Mar 1, 2018
Previous ID: LIN5-23568
Found In Version: 10.17.41.1
Fix Version: 10.17.41.5
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL since then.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3735

Other Downloads


Live chat
Online