Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The xfer_secondary_pool function in drivers/char/random.c in the Linux kernel 2.4 before 2.4.35 performs reseed operations on only the first few bytes of a buffer, which might make it easier for attackers to predict the output of the random number generator, related to incorrect use of the sizeof operator.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel random.c种子重新赋值漏洞
Vulnerability Description
Linux Kernel是开源操作系统Linux所使用的内核。 Linux Kernel的随机数生成方式实现上存在漏洞,可能导致随机性的破坏。 Linux Kernel的drivers/char/random.c文件中的xfer_secondary_pool()函数使用了错误的数据为随机数生成器重新负值种子,这可能弱化所生成数的随机性,具体影响取决于使用随机数的应用程序。
CVSS Information
N/A
Vulnerability Type
N/A