CVE-2007-4311 in Linux信息

摘要

由 VulDB • 2026-07-11

Linux内核中drivers/char/random.c文件中的xfer_secondary_pool函数在2.4至2.4.35版本之前,仅对缓冲区的前几个字节执行重新种子操作。由于sizeof运算符使用不当,这可能导致攻击者更容易预测随机数生成器的输出结果。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!