In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.
References
Link | Resource |
---|---|
https://bugzilla.samba.org/show_bug.cgi?id=15103 | Exploit Issue Tracking Vendor Advisory |
https://gitlab.com/samba-team/samba/-/merge_requests/2644 | Patch Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZTTOLTHUHOV4SHCHCB5TAA4FQVJAWN4P/ | |
https://security.gentoo.org/glsa/202309-06 |
Configurations
History
07 Nov 2023, 03:42
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
17 Sep 2023, 09:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2022-09-01 21:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-1615
Mitre link : CVE-2022-1615
CVE.ORG link : CVE-2022-1615
JSON object : View
Products Affected
fedoraproject
- fedora
samba
- samba
CWE
CWE-330
Use of Insufficiently Random Values