CVE-2013-4345 in LinuxИнформация

Сводка

по MITRE

Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via multiple requests for small amounts of data, leading to improper management of the state of the consumed data.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Резервировать

12.06.2013

Раскрытие

10.10.2013

Модерация

принято

Вход

VDB-10574

EPSS

0.03181

KEV

Нет

Деятельности

Очень низкий

Источники

Do you want to use VulDB in your project?

Use the official API to access entries easily!