CVE-2014-0017

Published: 5 March 2014

The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator (PRNG), which causes the state to be shared between children processes and allows local users to obtain sensitive information by leveraging a pid collision.

Priority

Status

Package	Release	Status
libssh Launchpad, Ubuntu, Debian	lucid	Ignored (reached end-of-life)
	precise	Released (0.5.2-1ubuntu0.12.04.3)
	quantal	Released (0.5.2-1ubuntu0.12.10.3)
	saucy	Released (0.5.4-1ubuntu0.1)
	upstream	Released (0.6.3)
	Patches: upstream: http://git.libssh.org/projects/libssh.git/commit/?id=e99246246b4061f7e71463f8806b9dcad65affa0

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0017
http://www.openwall.com/lists/oss-security/2014/03/05/1
http://www.libssh.org/2014/03/04/libssh-0-6-3-security-release/
https://ubuntu.com/security/notices/USN-2145-1
NVD
Launchpad
Debian

Bugs

https://bugzilla.redhat.com/show_bug.cgi?id=1072191

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›