Wind River Support Network

HomeDefectsLIN9-7415

Fixed

LIN9-7415 : Security Advisory - gnutls - CVE-2018-10845

Created: Aug 31, 2018 Updated: Dec 3, 2018

Resolved Date: Sep 19, 2018

Found In Version: 9.0.0.17

Fix Version: 9.0.0.18

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

It was found that the GnuTLS implementation of HMAC-SHA-384 was vulnerable to a Lucky thirteen style attack. Remote attackers could use this flaw to conduct distinguishing attacks and plain text recovery attacks via statistical analysis of timing data using crafted packets.

https://nvd.nist.gov/vuln/detail/CVE-2018-10845

Other Downloads

Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-10845