FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  362844
Date:      2014-07-24
Time:      20:12:51Z
Committer: ohauer

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
e4833927-86e5-11e0-a6b4-000a5e1e33c6Erlang -- ssh library uses a weak random number generator

US-CERT reports:

The Erlang/OTP ssh library implements a number of cryptographic operations that depend on cryptographically strong random numbers. Unfortunately the RNG used by the library is not cryptographically strong, and is further weakened by the use of predictable seed material. The RNG (Wichman-Hill) is not mixed with an entropy source.


Discovery 2011-05-25
Entry 2011-05-25
erlang
lt r14b03

CVE-2011-0766
http://www.erlang.org/download/otp_src_R14B03.readme
https://github.com/erlang/otp/commit/f228601de45c5b53241b103af6616453c50885a5
e4833927-86e5-11e0-a6b4-000a5e1e33c6Erlang -- ssh library uses a weak random number generator

US-CERT reports:

The Erlang/OTP ssh library implements a number of cryptographic operations that depend on cryptographically strong random numbers. Unfortunately the RNG used by the library is not cryptographically strong, and is further weakened by the use of predictable seed material. The RNG (Wichman-Hill) is not mixed with an entropy source.


Discovery 2011-05-25
Entry 2011-05-25
erlang
lt r14b03

CVE-2011-0766
http://www.erlang.org/download/otp_src_R14B03.readme
https://github.com/erlang/otp/commit/f228601de45c5b53241b103af6616453c50885a5