Wind River Support Network

HomeDefectsLIN6-6965

Fixed

LIN6-6965 : Security Advisory - gnutls - CVE-2014-0092

Created: Mar 16, 2014 Updated: Dec 3, 2018

Resolved Date: Mar 24, 2014

Found In Version: 6.0.0.5

Fix Version: 6.0.0.5

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0092

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38