Lucene search
GoogleOSV:GO-2022-0411HistoryJul 01, 2022 - 8:08 p.m.
Insufficient randomness in github.com/Masterminds/goutils
2022-07-0120:08:24
Google
osv.dev
9
Randomly-generated alphanumeric strings contain significantly less entropy than expected.
The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by these functions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/masterminds/goutils | lt | 1.1.1 |
Related
gitlab
gitlab
veracode
veracode
Insufficient Entropy In Randomly-Generated Alphanumeric Strings
2023-01-10 07:40:18
cvelist
cvelist
CVE-2021-4238 Insufficient randomness in github.com/Masterminds/goutils
2022-12-27 21:13:50
redhatcve
redhatcve
CVE-2021-4238
2022-12-28 11:35:12
redhat
redhat
ibm
ibm
Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities (CVE-2021-4238)
2023-05-17 15:24:34
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
2023-07-27 09:18:06
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-01-31 19:31:55
osv
osv
GoUtils's randomly-generated alphanumeric strings contain significantly less entropy than expected
2022-12-28 00:30:23
RandomAlphaNumeric and CryptoRandomAlphaNumeric are not as random as they should be
2021-05-21 16:26:06
CVE-2021-4238
2022-12-27 22:15:12
prion
prion
Design/Logic Flaw
2022-12-27 22:15:00
github
github
wolfi
wolfi
CVE-2021-4238 vulnerabilities
2024-05-18 03:12:40
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh 2.1.6 (RHSA-2023:0540)
2024-04-28 00:00:00
debiancve
debiancve
CVE-2021-4238
2022-12-27 22:15:00
cgr
cgr
CVE-2021-4238 vulnerabilities
2024-05-18 03:08:02
ubuntucve
ubuntucve
CVE-2021-4238
2022-12-27 00:00:00
cve
cve
CVE-2021-4238
2022-12-27 22:15:00