pycrypto PRNG vulnerabilities

Predictable PRNG state after fork...

[ MDVSA-2013:262 ] python-pycrypto

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:262 http://www.mandriva.com/en/support/security/ Package : python-pycrypto Date : October 28, 2013 Affected: Business Server 1.0 Problem Description: Updated python-pycrypto package fixes security...

Low: python-crypto

Issue Overview: The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator PRNG before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race...

Mandriva Linux Security Advisory : python-pycrypto (MDVSA-2013:262)

Updated python-pycrypto package fixes security vulnerability : In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator PRNG exhibits a race condition that may cause it to generate the same 'random' output in multiple processes that are forked from each other. Depending on the...

Fedora Update for python-crypto FEDORA-2013-19441

Check for the Version of python-crypto OpenVAS Vulnerability Test Fedora Update for python-crypto FEDORA-2013-19441 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Fedora Update for python-crypto FEDORA-2013-19472

Check for the Version of python-crypto OpenVAS Vulnerability Test Fedora Update for python-crypto FEDORA-2013-19472 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

[SECURITY] Fedora 19 Update: python-crypto-2.6.1-1.fc19

PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...

[SECURITY] Fedora 18 Update: python-crypto-2.6.1-1.fc18

PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...

[SECURITY] Fedora 18 Update: python-crypto-2.6.1-1.fc18

PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...

Fedora 18 : python-crypto-2.6.1-1.fc18 (2013-19472)

In previous versions of PyCrypto, the Crypto.Random PRNG exhibits a race condition that may cause forked processes to generate identical sequences of 'random' numbers. This release fixes the problem by resetting the rate-limiter when Crypto.Random.atfork is invoked. Note that Tenable Network...

Fedora 19 : python-crypto-2.6.1-1.fc19 (2013-19441)

In previous versions of PyCrypto, the Crypto.Random PRNG exhibits a race condition that may cause forked processes to generate identical sequences of 'random' numbers. This release fixes the problem by resetting the rate-limiter when Crypto.Random.atfork is invoked. Note that Tenable Network...

CVE-2013-1445

The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator PRNG before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a...

Race condition

The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator PRNG before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a...

fuel-pdsh (>=1.0.0.dev19 <=1.0.0.dev21), gittle3 (=0.6.0) +1 more potentially affected by CVE-2013-1445 via pycrypto (>=2.4.1 <=2.6.0)

pycrypto PYPI version =2.4.1, =1.0.0.dev19, =1.0.0.dev21 - gittle3 =0.6.0 - wipdevice =0.0.4 Source cves: CVE-2013-1445 Source advisory: OSV:PYSEC-2013-29...

CVE-2013-1445

The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator PRNG before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a...

PYSEC-2013-29

The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator PRNG before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a...

CVE-2013-1445

CVE-2013-1445 affects PyCrypto’s Crypto.Random.atfork PRNG reseeding: a race condition allows a child process to access the PRNG within the same rate-limit period, potentially exposing sensitive information. Root cause is inadequate reseeding before forking in PyCrypto before 2.6.1. Affected: PyC...

CVE-2013-1445

The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator PRNG before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a...

CVE-2013-1445

Removed by vendor...

Updated python-pycrypto packages fix CVE-2013-1445

Updated python-pycrypto package fixes security vulnerability: In PyCrypto before v2.6.1, the Crypto.Random pseudo-random number generator PRNG exhibits a race condition that may cause it to generate the same 'random' output in multiple processes that are forked from each other. Depending on the...