CVE-2008-0299
Published: 16 January 2008
common.py in Paramiko 1.7.1 and earlier, when using threads or forked processes, does not properly use RandomPool, which allows one session to obtain sensitive information from another session by predicting the state of the pool.
Priority
Status
Package | Release | Status |
---|---|---|
paramiko Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Ignored
(end of life)
|
|
intrepid |
Not vulnerable
(1.7.3-1)
|
|
jaunty |
Not vulnerable
(1.7.3-1)
|
|
karmic |
Not vulnerable
(1.7.3-1)
|
|
lucid |
Not vulnerable
(1.7.3-1)
|
|
maverick |
Not vulnerable
(1.7.3-1)
|
|
natty |
Not vulnerable
(1.7.3-1)
|
|
upstream |
Released
(1.7.2)
|