Oval Definition:oval:com.ubuntu.precise:def:20131445000
Revision Date:2013-10-26Version:1
Title:CVE-2013-1445 on Ubuntu 12.04 LTS (precise) - low.
Description:The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator (PRNG) before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a child process is created and accesses the PRNG within the same rate-limit period as another process.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-1445
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND The 'python-crypto' package in precise is affected and needs fixing.
  • BACK