Wind River Support Network

HomeDefectsLIN8-4619
Fixed

LIN8-4619 : Security Advisory - openssl - CVE-2016-2183

Created: Sep 1, 2016    Updated: Dec 3, 2018
Resolved Date: Sep 11, 2016
Found In Version: 8.0
Fix Version: 8.0.0.10
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

Ciphers with 64-bit block sizes used in CBC mode were found to be vulnerable to birthday attack when key renegotiation doesn't happen frequently or at all in long running connections. 3DES cipher as used in TLS protocol is vulnerable to this attack, that allows remote attacker to recover partial plaintext information (XOR of two plaintext blocks).

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2183

Security Notices


Other Downloads


CVEs


Live chat
Online