FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libssh -- PRNG state reuse on forking servers

Affected packages
libssh < 0.6.3

Details

VuXML ID f8c88d50-5fb3-11e4-81bd-5453ed2e2b49
Discovery 2014-03-05
Entry 2014-10-29

Aris Adamantiadis reports:

When accepting a new connection, the server forks and the child process handles the request. The RAND_bytes() function of openssl doesn't reset its state after the fork, but simply adds the current process id (getpid) to the PRNG state, which is not guaranteed to be unique.

[source]

References

CVE Name CVE-2014-0017
Message http://www.openwall.com/lists/oss-security/2014/03/05/1
URL http://secunia.com/advisories/57407

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.