Wind River Support Network


LIN6-11737 : Security Advisory - openssl - CVE-2016-2183

Created: Sep 1, 2016    Updated: Dec 3, 2018
Resolved Date: Sep 7, 2016
Found In Version: 6.0
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace


Ciphers with 64-bit block sizes used in CBC mode were found to be vulnerable to birthday attack when key renegotiation doesn't happen frequently or at all in long running connections. 3DES cipher as used in TLS protocol is vulnerable to this attack, that allows remote attacker to recover partial plaintext information (XOR of two plaintext blocks).

Security Notices

Other Downloads

Live chat