CVE-2013-4345 in Linuxinformazioni

Riassunto

di MITRE

Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via multiple requests for small amounts of data, leading to improper management of the state of the consumed data.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

12/06/2013

Divulgazione

10/10/2013

Moderazione

accettato

CPE

pronto

EPSS

0.03181

KEV

no

Attività

molto basso

Fonti

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!