These vulnerabilities may occur in Wind River–developed products or in execution environments in which Wind River products operate. Wind River is committed to active threat monitoring, rapid assessment and threat prioritization, proactive customer notification, and timely remediation.
| Notice | Summary | Products | Requirement | Release Date | Last Modify Date |
|---|---|---|---|---|---|
| Wind River Security Vulnerability Notice: Straight-Line Speculation (CVE-2020-13844) | Wind River Security Vulnerability Notice: Straight-Line Speculation (CVE-2020-13844) for Wind River Linux | Wind River Linux 4 | Recommended | -- | Jun 16, 2020 |
| Wind River Security Vulnerability Notice: Special Register Buffer Data Sampling Advisory (CVE-2020-0543) | Wind River Security Vulnerability Notice: Special Register Buffer Data Sampling Advisory (CVE-2020-0543) for Wind River Linux | Wind River Linux 4 | Recommended | -- | Jun 11, 2020 |
| Wind River Security Vulnerability Notice: several CVEs released by Intel Product Security Center in November 12, 2019 | Wind River Security Vulnerability Notice: several CVEs on Intel products may effect on Wind River Linux | Wind River Linux 4 | Recommended | -- | Dec 11, 2019 |
| Wind River Security Vulnerability Notice: TCP SACK PANIC (CVE-2019-11477 CVE-2019-11478 CVE-2019-11479) | Wind River Security Vulnerability Notice: TCP SACK PANIC (CVE-2019-11477 CVE-2019-11478 CVE-2019-11479) for Wind River Linux | Wind River Linux 4 | Recommended | -- | Aug 9, 2019 |
| Wind River Security Vulnerability Notice: Microarchitectural Data Sampling (CVE-2018-12126 , CVE-2018-12127, CVE-2018-12130, CVE-2019-11091) | Wind River Security Vulnerability Notice: Microarchitectural Data Sampling (CVE-2018-12126 , CVE-2018-12127,CVE-2018-12130,CVE-2019-11091) for Wind River Linux | Wind River Linux 4 | Recommended | -- | Jun 30, 2019 |
| Wind River Linux Security Alert for 6 openssl security issues (CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 CVE-2016-2109 CVE-2016-2176) | Wind River Linux Security Alert for 6 openssl security issues (CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 CVE-2016-2109 CVE-2016-2176) | Wind River Linux 4 | Recommended | May 3, 2016 | May 3, 2016 |
| Wind River Linux 4.3 Security Alert for glibc getaddrinfo() stack-based buffer overflow -- CVE-2015-7547 | Wind River Linux 4.3 Security Alert for glibc getaddrinfo() stack-based buffer overflow -- CVE-2015-7547 | Wind River Linux 4 | Recommended | Feb 22, 2016 | Feb 22, 2016 |
| Wind River Security Alert for GHOST gethostbyname heap overflow in glibc/eglibc (CVE-2015-0235) | Wind River Security Alert for GHOST gethostbyname heap overflow in glibc/eglibc (CVE-2015-0235) | Wind River Linux 4 | Recommended | Jan 29, 2015 | Aug 10, 2015 |
| The leap second handling in WRLinux (update 07/22/2015) | The leap second handling in WRLinux | Wind River Linux 4 | Recommended | Feb 9, 2015 | Jul 22, 2015 |
| Wind River Security Alert for Logjam Attack | Wind River Security Alert for Logjam Attack | Wind River Linux 4 | Recommended | May 27, 2015 | May 29, 2015 |
| Wind River Security Alert for 2 NTP vulnerabilities (CVE-2014-9297 & CVE-2014-9298) | Wind River Security Alert for 2 NTP vulnerabilities (CVE-2014-9297 & CVE-2014-9298) | Wind River Linux 4 | Recommended | Feb 5, 2015 | Feb 5, 2015 |
| Wind River Security Alert for Wind River Linux several critical NTP vulnerabilities (CVE-2014-9293,CVE-2014-9294,CVE-2014-9295,CVE-2014-9296) | Wind River Security Alert for Wind River Linux several critical NTP vulnerabilities (CVE-2014-9293,CVE-2014-9294,CVE-2014-9295,CVE-2014-9296) | Wind River Linux 4 | Recommended | Dec 22, 2014 | Dec 22, 2014 |
| Wind River Security Alert for Wind River Linux 4.x/5.0.1.x/6.0.0.x (CVE-2014-6271 & CVE-2014-7169 & CVE-2014-7186 & CVE-2014-7187 & CVE-2014-6277 & CVE-2014-6278 ) | Wind River Security Alert for Wind River Linux 4.x/5.0.1.x/6.0.0.x (CVE-2014-6271 & CVE-2014-7169 & CVE-2014-7186 & CVE-2014-7187 & CVE-2014-6277 & CVE-2014-6278) | Wind River Linux 4 | Recommended | Sep 24, 2014 | Nov 20, 2014 |
| Wind River Security Alert for Wind River Linux SSLv3 POODLE vulnerability (CVE-2014-3566 & CVE-2014-3568) | Wind River Security Alert for Wind River Linux SSLv3 POODLE vulnerability (CVE-2014-3566 & CVE-2014-3568) | Wind River Linux 4 | Recommended | Oct 15, 2014 | Oct 23, 2014 |
| Wind River Security Alert for Wind River Linux 4.x/5.0.1.x/6.0.0.x | Wind River Security Alert for Wind River Linux 4.x/5.0.1.x/6.0.0.x | Wind River Linux 4 | Recommended | Aug 18, 2014 | Aug 18, 2014 |
| Wind River Security Alert for Wind River Linux 3.x/4.x/5.0.1.x/6.0.0.x | Wind River Security Alert for Wind River Linux 3.x/4.x/5.0.1.x/6.0.0.x | Wind River Linux 4 | Recommended | Apr 8, 2014 | Apr 14, 2014 |
