Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-4311

The xfer_secondary_pool function in drivers/char/random.c in the Linux kernel 2.4 before 2.4.35 performs reseed operations on only the first few bytes of a buffer, which might make it easier for attackers to predict the output of the random number generator, related to incorrect use of the sizeof operator.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.kernel.org/...
DEBIAN: DSA-1503
SECUNIA: 29058
CONFIRM: http://git.kernel.org/...
CONFIRM: http://git.kernel.org/...
CONFIRM: http://www.kernel.org/...
BID: 25029
VUPEN: ADV-2007-2690

Launchpad.net

CVE 2007-4311

Related bugs

References