Wind River Support Network

HomeDefectsLIN5-22417
Fixed

LIN5-22417 : Security Advisory - openssl - CVE-2017-3731

Created: Jan 27, 2017    Updated: May 29, 2018
Resolved Date: Feb 6, 2017
Found In Version: 5.0.1.38
Fix Version: 5.0.1.39
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

If an SSL/TLS server or client is running on a 32-bit host, and a specific
cipher is being used, then a truncated packet can cause that server or client
to perform an out-of-bounds read, usually resulting in a crash.

Other Downloads


Live chat
Online