Ubuntu 7.04 / 7.10 / 8.04 LTS : openvpn regression (USN-612-10)

USN-612-3 addressed a weakness in OpenSSL certificate and key generation in OpenVPN by adding checks for vulnerable certificates and keys to OpenVPN. A regression was introduced in OpenVPN when using TLS with password protected certificates which caused OpenVPN to not start when used with...

Debian and Ubuntu OpenSSL packages contain a predictable random number generator

Overview A vulnerability in the OpenSSL package included with the Debian GNU/Linux operating system and its derivatives may cause weak cryptographic keys to be generated. Description A weakness exists in the random number generator used by the OpenSSL package included with the Debian GNU/Linux...

[USN-612-1] OpenSSL vulnerability

=========================================================== Ubuntu Security Notice USN-612-1 May 13, 2008 openssl vulnerability CVE-2008-0166 =========================================================== A weakness has been discovered in the random number generator used by OpenSSL on Debian and...

CVE-2008-0166

OpenSSL 0.9.8c-1 up to versions before 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote attackers to conduct brute force guessing attacks against cryptographic keys...

CVE-2008-0166

OpenSSL 0.9.8c-1 up to versions before 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote attackers to conduct brute force guessing attacks against cryptographic keys...

Debian Security Advisory DSA 1544-1 (pdns-recursor)

The remote host is missing an update to pdns-recursor announced via advisory DSA 1544-1. OpenVAS Vulnerability Test $Id: deb15441.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1544-1 pdns-recursor Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft...

Debian Security Advisory DSA 1544-1 (pdns-recursor)

The remote host is missing an update to pdns-recursor announced via advisory DSA 1544-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Debian DSA-1544-2 : pdns-recursor - design flaw

Amit Klein discovered that pdns-recursor, a caching DNS resolver, uses a weak random number generator to create DNS transaction IDs and UDP source port numbers. As a result, cache poisoning attacks were simplified. CVE-2008-1637 and CVE-2008-3217 %NASLMINLEVEL 70300 C Tenable Network Security, In...

powerdns-recursor -- DNS cache poisoning

If the system random number generator can be predicted by its past output, then an attacker may spoof Recursor to accept mallicious data. This leads to DNS cache poisoning and client redirection...

CVE-2008-1148

A certain pseudo-random number generator PRNG algorithm that uses ADD with 0 random hops aka "Algorithm A0", as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attackers to guess sensitive values such as 1 DNS transaction IDs or 2 IP fragmentation IDs by observing a...

CVE-2008-1148

CVE-2008-1148 concerns a flaw in a PRNG using ADD with 0 random hops (Algorithm A0) that affects OpenBSD 3.5–4.2 and NetBSD 1.6.2–4.0. Attackers can observe a sequence of previously generated values to guess sensitive identifiers such as DNS transaction IDs and IP fragmentation IDs, enabling pote...

DSA-1504-1 kernel-image-2.6.8 - several issues

Bulletin has no description...

Microsoft Windows 2000不安全随机号码生成器信息泄露漏洞

Security loophole in Windows 2000 exposes users' private info Cryptanalysis of the Random Number Generator of the Windows Operating System Microsoft Windows 2000是一款流行的操作系统。 Microsoft Windows 2000包含的随机号码生成器存在漏洞，本地攻击者可以利用漏洞获得用户Email,密码和信用卡等敏感信息。 问题存在于CryptGenRandom函数中，此漏洞可导致本地信息泄露而不能进行代码执行攻击，也不能远程访...

Ubuntu 6.10 : linux-source-2.6.17 vulnerabilities (USN-486-1)

The compatsysmount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode. CVE-2006-7203 The Omnikey CardMan 4040 driver cm4040cs did not limit the size of buffers passed to read and write. A local attacker could exploit this to execute...

Ubuntu 6.10 : linux-source-2.6.17 vulnerabilities (USN-509-1)

A flaw in the sysfsreaddir function allowed a local user to cause a denial of service by dereferencing a NULL pointer. CVE-2007-3104 A buffer overflow was discovered in the random number generator. In environments with granular assignment of root privileges, a local attacker could gain additional...

Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerability (USN-489-1)

A flaw was discovered in dvb ULE decapsulation. A remote attacker could send a specially crafted message and cause a denial of service. CVE-2006-4623 The compatsysmount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode. CVE-2006-7203...

Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-508-1)

A buffer overflow was discovered in the Moxa serial driver. Local attackers could execute arbitrary code and gain root privileges. CVE-2005-0504 A flaw was discovered in the IPv6 stack's handling of type 0 route headers. By sending a specially crafted IPv6 packet, a remote attacker could cause a...

Ubuntu 7.04 : linux-source-2.6.20 vulnerabilities (USN-470-1)

USN-464-1 fixed several vulnerabilities in the Linux kernel. Some additional code changes were accidentally included in the Feisty update which caused trouble for some people who were not using UUID-based filesystem mounts. These changes have been reverted. We apologize for the inconvenience. For...

kernel security update

CentOS Errata and Security Advisory CESA-2007:0939 Updated kernel packages that fix various security issues in the Red Hat Enterprise Linux 4 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel is the cor...

RHEL 4 : kernel (RHSA-2007:0939)

Updated kernel packages that fix various security issues in the Red Hat Enterprise Linux 4 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel is the core of the operating system. These updated kernel...