Oval Definition:oval:org.mitre.oval:def:9960
Revision Date:2013-04-29Version:12
Title:The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same values after reboots on systems without an entropy source.
Description:The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same values after reboots on systems without an entropy source.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-2453
Platform(s):CentOS Linux 5
Oracle Linux 5
Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis
  • RHEL5, CentOS5 or Oracle Linux 5
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • OR Oracle Linux 5.x
  • AND Configuration section
  • kernel-kdump is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-xen is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-headers is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-kdump-devel is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-xen-devel is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-PAE-devel is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-devel is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-PAE is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-doc is earlier than 0:2.6.18-8.1.6.el5
  • OR kernel-debuginfo-common is earlier than 0:2.6.18-8.1.6.el5
  • BACK