FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  351541
Date:      2014-04-18
Time:      14:56:43Z
Committer: ohauer

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
c0f122e2-3897-11e3-a084-3c970e169bc2pycrypto -- PRNG reseed race condition

Dwayne Litzenberger reports:

In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator (PRNG) exhibits a race condition that may cause it to generate the same 'random' output in multiple processes that are forked from each other. Depending on the application, this could reveal sensitive information or cryptographic keys to remote attackers.


Discovery 2013-10-17
Entry 2013-10-19
py26-pycrypto
py27-pycrypto
py31-pycrypto
py32-pycrypto
py33-pycrypto
lt 2.6.1

CVE-2013-1445
http://lists.dlitz.net/pipermail/pycrypto/2013q4/000702.html