Lucene search
+L

139 matches found

Tenable Nessus
Tenable Nessus
added 2018/05/30 12:0 a.m.296 views

Amazon Linux 2 : kernel (ALAS-2018-1023)

A weakness was found in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated. CVE-2018-1108 A flaw was found in the way the Linux kernel handled exceptions delivered after a stac...

8CVSS6.4AI score0.18842EPSS
Exploits14References8
Tenable Nessus
Tenable Nessus
added 2018/05/30 12:0 a.m.279 views

Amazon Linux AMI : kernel (ALAS-2018-1023)

A weakness was found in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated. CVE-2018-1108 A flaw was found in the way the Linux kernel handled exceptions delivered after a stac...

8CVSS6.6AI score0.18842EPSS
Exploits14References12
Amazon
Amazon
added 2018/05/25 12:0 a.m.590 views

Important: kernel

Issue Overview: A weakness was found in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated. CVE-2018-1108 A flaw was found in the way the Linux kernel handled exceptions...

8CVSS7.2AI score0.18842EPSS
Exploits14
CNVD
CNVD
added 2018/05/23 12:0 a.m.3 views

Linux kernel driver safety bypass vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. kernel drivers are one of the kernel drivers. A security vulnerability in the implementation of random seed numbers in versions of the Linux kernel driver prior to...

5.9CVSS6.6AI score0.01825EPSS
Exploits2References1
Prion
Prion
added 2018/05/21 9:29 p.m.25 views

Code injection

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

4.3CVSS6.1AI score0.01825EPSS
Exploits2References9Affected Software3
NVD
NVD
added 2018/05/21 9:29 p.m.19 views

CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

5.9CVSS6.3AI score0.01825EPSS
Exploits2References9
OSV
OSV
added 2018/05/21 9:29 p.m.2 views

DEBIAN-CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

5.9CVSS6.5AI score0.01825EPSS
Exploits2References1
OSV
OSV
added 2018/05/21 9:29 p.m.5 views

CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

5.9CVSS6.1AI score0.01825EPSS
Exploits2References9
Debian CVE
Debian CVE
added 2018/05/21 9:0 p.m.69 views

CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

5.9CVSS6.9AI score0.01825EPSS
Exploits2
CVE
CVE
added 2018/05/21 9:0 p.m.265 views

CVE-2018-1108

CVE-2018-1108 affects Linux kernel random seed handling in kernel drivers prior to 4.17-rc1. Seeds could be consumed during early boot before sufficient entropy was gathered, risking confidentiality and integrity of encrypted communications. Public documents specify that the entropy/generator had...

5.9CVSS6.4AI score0.01825EPSS
Exploits2References9Affected Software1
Cvelist
Cvelist
added 2018/05/21 9:0 p.m.17 views

CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

5.9CVSS6.5AI score0.01825EPSS
Exploits2References9
UbuntuCve
UbuntuCve
added 2018/05/21 12:0 a.m.36 views

CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

5.9CVSS6.8AI score0.01825EPSS
Exploits2References8
OSV
OSV
added 2018/05/21 12:0 a.m.2 views

UBUNTU-CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

5.9CVSS6.8AI score0.01825EPSS
Exploits2References9
Positive Technologies
Positive Technologies
added 2018/04/06 12:0 a.m.19 views

PT-2018-10291 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.17-rc1 Description: The issue is related to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was...

10CVSS7.5AI score0.93838EPSS
Exploits129References850
Prion
Prion
added 2018/03/26 3:29 p.m.32 views

Authentication flaw

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

6.8CVSS9.2AI score0.15885EPSS
Exploits0References29Affected Software10
CNVD
CNVD
added 2017/04/18 12:0 a.m.5 views

Unspecified vulnerability in libxslt math.random function

libxslt is an XSLT XML Language for Defining XML Transformations C library developed for the GNOME project. A security vulnerability exists in libxslt 1.1.29 and earlier versions due to the program failing to initialize the EXSLT math.random function with a random seed. An attacker could use this...

5.3CVSS9.2AI score0.02122EPSS
Exploits0References1
OSV
OSV
added 2017/04/05 9:59 p.m.11 views

CVE-2015-9019

In libxslt 1.1.29 and earlier, the EXSLT math.random function was not initialized with a random seed during startup, which could cause usage of this function to produce predictable outputs...

5.3CVSS6.6AI score
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.40 views

Debian DLA-88-1 : ruby1.8 security update

This update fixes multiple local and remote denial of service and remote code execute problems : CVE-2011-0188 Properly allocate memory, to prevent arbitrary code execution or application crash. Reported by Drew Yao. CVE-2011-2686 Reinitialize the random seed when forking to prevent CVE-2003-0900...

7.8CVSS7.5AI score0.056EPSS
Exploits5References8
OSV
OSV
added 2014/12/19 12:0 a.m.4 views

UBUNTU-CVE-2014-9294

util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack...

7.5CVSS7.2AI score0.12978EPSS
Exploits1References6
OSV
OSV
added 2014/10/13 10:55 a.m.8 views

CVE-2014-7284

The netgetrandomonce implementation in net/core/utils.c in the Linux kernel 3.13.x and 3.14.x before 3.14.5 on certain Intel processors does not perform the intended slow-path operation to initialize random seeds, which makes it easier for remote attackers to spoof or disrupt IP communication by...

5.2AI score
Exploits0References6
Rows per page
Query Builder