FreeBSD 'arc4random (9)' Pseudo-Random Number Generator Insufficient Entropy Weakness

Bugtraq ID: 32447
Class: Unknown
CVE: CVE-2008-5162
Remote: No
Local: Yes
Published: Nov 24 2008 12:00AM
Updated: Nov 25 2008 09:51PM
Credit: Robert Woolley, Mark Murray, Maxim Dounin, Ruslan Ermilov
Vulnerable: FreeBSD FreeBSD 7.1 -RELEASE-p1
FreeBSD FreeBSD 7.1 -PRE-RELEASE
FreeBSD FreeBSD 7.0-STABLE
FreeBSD FreeBSD 7.0-RELEASE
FreeBSD FreeBSD 7.0 -RELENG
FreeBSD FreeBSD 7.0
FreeBSD FreeBSD 6.4 -STABLE
FreeBSD FreeBSD 6.4 -RELEASE
FreeBSD FreeBSD 6.3 -RELENG
FreeBSD FreeBSD 6.3 -RELEASE-p6
FreeBSD FreeBSD 6.3
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus