FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-23 14:57:51 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
e4833927-86e5-11e0-a6b4-000a5e1e33c6	Erlang -- ssh library uses a weak random number generator US-CERT reports: The Erlang/OTP ssh library implements a number of cryptographic operations that depend on cryptographically strong random numbers. Unfortunately the RNG used by the library is not cryptographically strong, and is further weakened by the use of predictable seed material. The RNG (Wichman-Hill) is not mixed with an entropy source. Discovery 2011-05-25 Entry 2011-05-25 erlang < r14b03 CVE-2011-0766 http://www.erlang.org/download/otp_src_R14B03.readme https://github.com/erlang/otp/commit/f228601de45c5b53241b103af6616453c50885a5

VuXML ID

Description

e4833927-86e5-11e0-a6b4-000a5e1e33c6

Erlang -- ssh library uses a weak random number generator

US-CERT reports:

The Erlang/OTP ssh library implements a number of cryptographic operations that depend on cryptographically strong random numbers. Unfortunately the RNG used by the library is not cryptographically strong, and is further weakened by the use of predictable seed material. The RNG (Wichman-Hill) is not mixed with an entropy source.

Discovery 2011-05-25
Entry 2011-05-25
erlang

< r14b03

CVE-2011-0766
http://www.erlang.org/download/otp_src_R14B03.readme
https://github.com/erlang/otp/commit/f228601de45c5b53241b103af6616453c50885a5