Wind River Support Network

HomeDefectsLIN8-7573

Fixed

LIN8-7573 : Security Advisory - openssl - CVE-2017-3735

Created: Sep 6, 2017 Updated: Dec 3, 2018

Resolved Date: Sep 8, 2017

Found In Version: 8.0.0.19

Fix Version: 8.0.0.22

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Kernel

Description

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL since then.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3735

Other Downloads

Wind River Linux 8.0.0.22
Wind River Linux 8.0.0.23
Wind River Linux 8.0.0.24
Wind River Linux 8.0.0.25
Wind River Linux 8.0.0.26
Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-3735