FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  368339
Date:      2014-09-16
Time:      17:35:34Z
Committer: osa

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
c0f122e2-3897-11e3-a084-3c970e169bc2pycrypto -- PRNG reseed race condition

Dwayne Litzenberger reports:

In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator (PRNG) exhibits a race condition that may cause it to generate the same 'random' output in multiple processes that are forked from each other. Depending on the application, this could reveal sensitive information or cryptographic keys to remote attackers.


Discovery 2013-10-17
Entry 2013-10-19
Modified 2014-04-30
py26-pycrypto
lt 2.6.1

py27-pycrypto
lt 2.6.1

py31-pycrypto
lt 2.6.1

py32-pycrypto
lt 2.6.1

py33-pycrypto
lt 2.6.1

CVE-2013-1445
http://lists.dlitz.net/pipermail/pycrypto/2013q4/000702.html