Backport fix for CVE-2006-0353 from lsh2: - pkgsrc

diff options

author	salo <salo@pkgsrc.org>	2006-04-05 23:59:33 +0000
committer	salo <salo@pkgsrc.org>	2006-04-05 23:59:33 +0000
commit	12e8fb90e223930833e6b2c0500c0fa7fc0c20a9 (patch)
tree	ffc58191a948eda45eeb9bfeb9d4fc90ff168300 /doc
parent	36c3fdbed92a6fa0658a6403ae8ea25c68e60e00 (diff)
download	pkgsrc-12e8fb90e223930833e6b2c0500c0fa7fc0c20a9.tar.gz

Backport fix for CVE-2006-0353 from lsh2:

"unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to the randomness generator, which allows local users to cause a denial of service by truncating the seed file, which prevents the server from starting, or obtain sensitive seed information that could be used to crack keys." http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0353

Diffstat (limited to 'doc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: