Wind River Support Network

HomeDefectsLIN5-21921
Fixed

LIN5-21921 : Security Advisory - openssl - CVE-2016-6302

Created: Sep 1, 2016    Updated: May 29, 2018
Resolved Date: Sep 7, 2016
Found In Version: 5.0.1.36
Fix Version: 5.0.1.38
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

It was found that if a ticket callback changes the HMAC digest to SHA512 the existing sanity checks are not sufficient and an attacker could perform a DoS attack with a malformed ticket.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6302

Security Notices


Other Downloads


Live chat
Online